# Latest Cool Tools The following are a collection of recently-released pen test tools. I update this list every time that there is a new post and when I find a new one around the Internet. The rest of the repository has hundreds of additional cybersecurity and pen test tools. ---- - [Fast-Security-Scanners - Security Checks For Your Researches](http://feedproxy.google.com/~r/PentestTools/~3/Ux2JT4cmLP0/fast-security-scanners-security-checks.html) - [Hacktory platform packed with new game-playing features](http://feedproxy.google.com/~r/PentestTools/~3/XJZmMe2zRYc/hacktory-platform-packed-with-new-game.html) - [Terrascan - Detect Compliance And Security Violations Across Infrastructure As Code To Mitigate Risk Before Provisioning Cloud Native Infrastructure](http://feedproxy.google.com/~r/PentestTools/~3/9sfAtOR1icM/terrascan-detect-compliance-and.html) - [OnionSearch - A Script That Scrapes Urls On Different .Onion Search Engines](http://feedproxy.google.com/~r/PentestTools/~3/If8UWYdevXs/onionsearch-script-that-scrapes-urls-on.html) - [GG-AESY - Hide Cool Stuff In Images](http://feedproxy.google.com/~r/PentestTools/~3/lK20jOf8J9Q/gg-aesy-hide-cool-stuff-in-images.html) - [Fortiscan - A High Performance FortiGate SSL-VPN Vulnerability Scanning And Exploitation Tool](http://feedproxy.google.com/~r/PentestTools/~3/y67FPTjfPBg/fortiscan-high-performance-fortigate.html) - [Admin-Scanner - This Tool Is Design To Find Admin Panel Of Any Website By Using Custom Wordlist Or Default Wordlist Easily](http://feedproxy.google.com/~r/PentestTools/~3/MVzNQiWJ3DA/admin-scanner-this-tool-is-design-to.html) - [Talon - A Password Guessing Tool That Targets The Kerberos And LDAP Services Within The Windows Active Directory Environment](http://feedproxy.google.com/~r/PentestTools/~3/waBP2FQOsGc/talon-password-guessing-tool-that.html) - [Webscan - Browser-based Network Scanner And local-IP Detection](http://feedproxy.google.com/~r/PentestTools/~3/1BygnwO-C9g/webscan-browser-based-network-scanner.html) - [Tracee - Container And System Event Tracing Using eBPF](http://feedproxy.google.com/~r/PentestTools/~3/xBHqF9uhG3I/tracee-container-and-system-event.html) - [DNSx - A Fast And Multi-Purpose DNS Toolkit Allow To Run Multiple DNS Queries Of Your Choice With A List Of User-Supplied Resolvers](http://feedproxy.google.com/~r/PentestTools/~3/5hz0kQcr9zE/dnsx-fast-and-multi-purpose-dns-toolkit.html) - [Damn-Vulnerable-Bank - Vulnerable Banking Application For Android](http://feedproxy.google.com/~r/PentestTools/~3/2Miq4-7C-C8/damn-vulnerable-bank-vulnerable-banking.html) - [N1QLMap - The Tool Exfiltrates Data From Couchbase Database By Exploiting N1QL Injection Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/O33x0AmRMXU/n1qlmap-tool-exfiltrates-data-from.html) - [Bunkerized-Nginx - Nginx Docker Image Secure By Default](http://feedproxy.google.com/~r/PentestTools/~3/hq2zevJCuyg/bunkerized-nginx-nginx-docker-image.html) - [RedShell - An interactive command prompt that executes commands through proxychains and automatically logs them on a Cobalt Strike team server](http://feedproxy.google.com/~r/PentestTools/~3/_jOdO4UnpPs/redshell-interactive-command-prompt.html) - [Wsb-Detect - Tool To Detect If You Are Running In Windows Sandbox ("WSB")](http://feedproxy.google.com/~r/PentestTools/~3/cUt1cqbeX2U/wsb-detect-tool-to-detect-if-you-are.html) - [UAFuzz - Binary-level Directed Fuzzing For Use-After-Free Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/rBQr1q40rQA/uafuzz-binary-level-directed-fuzzing.html) - [Xerror - Fully Automated Pentesting Tool](http://feedproxy.google.com/~r/PentestTools/~3/0PcqWQUkcnw/xerror-fully-automated-pentesting-tool.html) - [ToothPicker - An In-Process, Coverage-Guided Fuzzer For iOS](http://feedproxy.google.com/~r/PentestTools/~3/YU_LRh4VhCw/toothpicker-in-process-coverage-guided.html) - [Osi.Ig - Information Gathering Instagram](http://feedproxy.google.com/~r/PentestTools/~3/H_EwTL5eRrY/osiig-information-gathering-instagram.html) - [Amlsec - Automated Security Risk Identification Using AutomationML-based Engineering Data](http://feedproxy.google.com/~r/PentestTools/~3/khxoO8-7vog/amlsec-automated-security-risk.html) - [SIRAS - Security Incident Response Automated Simulations](http://feedproxy.google.com/~r/PentestTools/~3/YkeE8FOcbT8/siras-security-incident-response.html) - [Fuzzilli - A JavaScript Engine Fuzzer](http://feedproxy.google.com/~r/PentestTools/~3/SwcA8mqskXY/fuzzilli-javascript-engine-fuzzer.html) - [Routopsy - A Toolkit Built To Attack Often Overlooked Networking Protocols](http://feedproxy.google.com/~r/PentestTools/~3/tdsh0Kf1ce4/routopsy-toolkit-built-to-attack-often.html) - [Invoke-Antivm - Powershell Tool For VM Evasion](http://feedproxy.google.com/~r/PentestTools/~3/dbUaZIgy3WQ/invoke-antivm-powershell-tool-for-vm.html) - [Bulwark - An Organizational Asset And Vulnerability Management Tool, With Jira Integration, Designed For Generating Application Security Reports](http://feedproxy.google.com/~r/PentestTools/~3/EnIG3k5FGRA/bulwark-organizational-asset-and.html) - [Doctrack - Tool To Manipulate And Insert Tracking Pixels Into Office Open XML Documents (Word, Excel)](http://feedproxy.google.com/~r/PentestTools/~3/oiiyeU7MMjg/doctrack-tool-to-manipulate-and-insert.html) - [Kali Linux 2020.4 - Penetration Testing and Ethical Hacking Linux Distribution](http://feedproxy.google.com/~r/PentestTools/~3/FjnGJwfZWfU/kali-linux-20204-penetration-testing.html) - [Teler - Real-time HTTP Intrusion Detection](http://feedproxy.google.com/~r/PentestTools/~3/2oeTpwatLLQ/teler-real-time-http-intrusion-detection.html) - [OpenEDR - Open EDR Public Repository](http://feedproxy.google.com/~r/PentestTools/~3/W4o5-DazIKY/openedr-open-edr-public-repository.html) - [Rehex - Reverse Engineers' Hex Editor](http://feedproxy.google.com/~r/PentestTools/~3/w8U1-YLvpqk/rehex-reverse-engineers-hex-editor.html) - [Gping - Ping, But With A Graph](http://feedproxy.google.com/~r/PentestTools/~3/mLrT0B2unho/gping-ping-but-with-graph.html) - [MacC2 - Mac Command And Control That Uses Internal API Calls Instead Of Command Line Utilities](http://feedproxy.google.com/~r/PentestTools/~3/MjPG_Kz4lws/macc2-mac-command-and-control-that-uses.html) - [Garud - An Automation Tool That Scans Sub-Domains, Sub-Domain Takeover And Then Filters Out XSS, SSTI, SSRF And More Injection Point Parameters](http://feedproxy.google.com/~r/PentestTools/~3/Yp2IUMGqTlg/garud-automation-tool-that-scans-sub.html) - [Go_Parser - Yet Another Golang Binary Parser For IDAPro](http://feedproxy.google.com/~r/PentestTools/~3/r-UPoHO9H9c/goparser-yet-another-golang-binary.html) - [FinalRecon v1.1.0 - The Last Web Recon Tool You'll Need](http://feedproxy.google.com/~r/PentestTools/~3/GdI0nzebe8E/finalrecon-v110-last-web-recon-tool.html) - [Trident - Automated Password Spraying Tool](http://feedproxy.google.com/~r/PentestTools/~3/utpWrmEIx2Y/trident-automated-password-spraying-tool.html) - [Webshell-Analyzer - Web Shell Scanner And Analyzer](http://feedproxy.google.com/~r/PentestTools/~3/9jpCBPI6vyM/webshell-analyzer-web-shell-scanner-and.html) - [DeepBlueCLI - a PowerShell Module for Threat Hunting via Windows Event Logs](http://feedproxy.google.com/~r/PentestTools/~3/g046hGs6-XY/deepbluecli-powershell-module-for.html) - [Feroxbuster - A Fast, Simple, Recursive Content Discovery Tool Written In Rust](http://feedproxy.google.com/~r/PentestTools/~3/8LdkAR3EnxM/feroxbuster-fast-simple-recursive.html) - [Brutto - Easy Brute Forcing To Whatever You Want](http://feedproxy.google.com/~r/PentestTools/~3/MOxwRC0d2bE/brutto-easy-brute-forcing-to-whatever.html) - [SwiftyInsta - Instagram Unofficial Private API Swift](http://feedproxy.google.com/~r/PentestTools/~3/AjmuVpxXbjo/swiftyinsta-instagram-unofficial.html) - [Kraken - Cross-platform Yara Scanner Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/GKChtuvSOvg/kraken-cross-platform-yara-scanner.html) - [Tempomail - Generate A Custom Email Address In 1 Second And Receive Emails](http://feedproxy.google.com/~r/PentestTools/~3/Bkhk6dBTp6U/tempomail-generate-custom-email-address.html) - [GWTMap - Tool to help map the attack surface of Google Web Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/LZkrS6Pg79A/gwtmap-tool-to-help-map-attack-surface.html) - [Threagile - Agile Threat Modeling Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/PVdhSActFk4/threagile-agile-threat-modeling-toolkit.html) - [JSMon - JavaScript Change Monitor for BugBounty](http://feedproxy.google.com/~r/PentestTools/~3/lgYTGY_97wo/jsmon-javascript-change-monitor-for.html) - [Hetty - An HTTP Toolkit For Security Research](http://feedproxy.google.com/~r/PentestTools/~3/eowu9_tSAs0/hetty-http-toolkit-for-security-research.html) - [ShowStopper - Anti-Debug tricks exploration tool](http://feedproxy.google.com/~r/PentestTools/~3/B5qwngNiy3c/showstopper-anti-debug-tricks.html) - [PCWT - A Web Application That Makes It Easy To Run Your Pentest And Bug Bounty Projects](http://feedproxy.google.com/~r/PentestTools/~3/C7w7zW8EFnA/pcwt-web-application-that-makes-it-easy.html) - [ReconNote - Web Application Security Automation Framework Which Recons The Target For Various Assets To Maximize The Attack Surface For Security Professionals & Bug-Hunters](http://feedproxy.google.com/~r/PentestTools/~3/lnzNyLPZlsE/reconnote-web-application-security.html) - [paradoxiaRAT - Native Windows Remote Access Tool](http://feedproxy.google.com/~r/PentestTools/~3/bqljBWuxsdw/paradoxiarat-native-windows-remote.html) - [Py3Webfuzz - A Python3 Module To Assist In Fuzzing Web Applications](http://feedproxy.google.com/~r/PentestTools/~3/SZKOSvoAB1U/py3webfuzz-python3-module-to-assist-in.html) - [NFCGate - An NFC Research Toolkit Application For Android](http://feedproxy.google.com/~r/PentestTools/~3/ZyjlJyXcqXg/nfcgate-nfc-research-toolkit.html) - [Octopus WAF - Web Application Firewall Made In C Language And Use Libevent](http://feedproxy.google.com/~r/PentestTools/~3/ujeZkpYmPA4/octopus-waf-web-application-firewall.html) - [Leonidas - Automated Attack Simulation In The Cloud, Complete With Detection Use Cases](http://feedproxy.google.com/~r/PentestTools/~3/oJq2NnmZ_xo/leonidas-automated-attack-simulation-in.html) - [FAMA - Forensic Analysis For Mobile Apps](http://feedproxy.google.com/~r/PentestTools/~3/t4Bql1kSR7Y/fama-forensic-analysis-for-mobile-apps.html) - [Scripthunter - Tool To Find JavaScript Files On Websites](http://feedproxy.google.com/~r/PentestTools/~3/VkViPmx5DXY/scripthunter-tool-to-find-javascript.html) - [Tfsec - Security Scanner For Your Terraform Code](http://feedproxy.google.com/~r/PentestTools/~3/5RkKrls3wJ8/tfsec-security-scanner-for-your.html) - [Linux-Evil-Toolkit - A Framework That Aims To Centralize, Standardize And Simplify The Use Of Various Security Tools For Pentest Professionals](http://feedproxy.google.com/~r/PentestTools/~3/rUnuJhfQtlU/linux-evil-toolkit-framework-that-aims.html) - [Herpaderping - Process Herpaderping Bypasses Security Products By Obscuring The Intentions Of A Process](http://feedproxy.google.com/~r/PentestTools/~3/sKlUbPy6Ieo/herpaderping-process-herpaderping.html) - [JWT-Hack - Tool To En/Decoding JWT, Generate Payload For JWT Attack And Very Fast Cracking(Dict/Brutefoce)](http://feedproxy.google.com/~r/PentestTools/~3/95rgsqXaRZQ/jwt-hack-tool-to-endecoding-jwt.html) - [Decoder++ - An Extensible Application For Penetration Testers And Software Developers To Decode/Encode Data Into Various Formats](http://feedproxy.google.com/~r/PentestTools/~3/h3xKH6Q_y_A/decoder-extensible-application-for.html) - [CobaltStrikeScan - Scan Files Or Process Memory For CobaltStrike Beacons And Parse Their Configuration](http://feedproxy.google.com/~r/PentestTools/~3/xcmsnUzdr8k/cobaltstrikescan-scan-files-or-process.html) - [Manuka - A Modular OSINT Honeypot For Blue Teamers](http://feedproxy.google.com/~r/PentestTools/~3/9cuvAZHnBY8/manuka-modular-osint-honeypot-for-blue.html) - [Pesidious - Malware Mutation Using Reinforcement Learning And Generative Adversarial Networks](http://feedproxy.google.com/~r/PentestTools/~3/phMJJ_a4bqY/pesidious-malware-mutation-using.html) - [AutoGadgetFS - USB Testing Made Easy](http://feedproxy.google.com/~r/PentestTools/~3/Wk_mYJIJXU8/autogadgetfs-usb-testing-made-easy.html) - [NoSQLi - NoSql Injection CLI Tool](http://feedproxy.google.com/~r/PentestTools/~3/43Dzn-as34k/nosqli-nosql-injection-cli-tool.html) - [GitDorker - A Tool To Scrape Secrets From GitHub Through Usage Of A Large Repository Of Dorks](http://feedproxy.google.com/~r/PentestTools/~3/8Ew9xlU23Vw/gitdorker-tool-to-scrape-secrets-from.html) - [Oregami - IDA Plugins And Scripts For Analyzing Register Usage Frame](http://feedproxy.google.com/~r/PentestTools/~3/mLRimLDAQJ4/oregami-ida-plugins-and-scripts-for.html) - [NTLMRawUnHide - A Python3 Script Designed To Parse Network Packet Capture Files And Extract NTLMv2 Hashes In A Crackable Format](http://feedproxy.google.com/~r/PentestTools/~3/INprasEuyDM/ntlmrawunhide-python3-script-designed.html) - [MalwareSourceCode - Collection Of Malware Source Code For A Variety Of Platforms In An Array Of Different Programming Languages](http://feedproxy.google.com/~r/PentestTools/~3/4YbzsXbzUc4/malwaresourcecode-collection-of-malware.html) - [Pwndoc - Pentest Report Generator](http://feedproxy.google.com/~r/PentestTools/~3/1oiVz67GocU/pwndoc-pentest-report-generator.html) - [Zap-Hud - The OWASP ZAP Heads Up Display (HUD)](http://feedproxy.google.com/~r/PentestTools/~3/MOqAzhY47sk/zap-hud-owasp-zap-heads-up-display-hud.html) - [PatchChecker - Web-based Check For Windows Privesc Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/rmNJiqk38Ys/patchchecker-web-based-check-for.html) - [Apk-Medit - Memory Search And Patch Tool On Debuggable Apk Without Root & Ndk](http://feedproxy.google.com/~r/PentestTools/~3/fpYnRfgN1ng/apk-medit-memory-search-and-patch-tool.html) - [SSJ - Your Everyday Linux Distribution Gone Super Saiyan](http://feedproxy.google.com/~r/PentestTools/~3/a0LsYrnc7MY/ssj-your-everyday-linux-distribution.html) - [RmiTaste - Allows Security Professionals To Detect, Enumerate, Interact And Exploit RMI Services By Calling Remote Methods With Gadgets From Ysoseria](http://feedproxy.google.com/~r/PentestTools/~3/eHj76Z56HVw/rmitaste-allows-security-professionals.html) - [Taken - Takeover AWS Ips And Have A Working POC For Subdomain Takeover](http://feedproxy.google.com/~r/PentestTools/~3/bOdrVajU9Ns/taken-takeover-aws-ips-and-have-working.html) - [Simple-Live-Data-Collection - Simple Live Data Collection Tool](http://feedproxy.google.com/~r/PentestTools/~3/WlQdecUzj3w/simple-live-data-collection-simple-live.html) - [TheCl0n3r - Tool To Download And Manage Your Git Repositories](http://feedproxy.google.com/~r/PentestTools/~3/EJSjWII-gNQ/thecl0n3r-tool-to-download-and-manage.html) - [Eagle - Yet Another Vulnerability Scanner](http://feedproxy.google.com/~r/PentestTools/~3/rgibZTcp-HI/eagle-yet-another-vulnerability-scanner.html) - [HackBrowserData - Decrypt Passwords/Cookies/History/Bookmarks From The Browser](http://feedproxy.google.com/~r/PentestTools/~3/PgoEIWjcmZY/hackbrowserdata-decrypt.html) - [Mail-Swipe - Script To Create Temporary Email Addresses And Receive Emails](http://feedproxy.google.com/~r/PentestTools/~3/OZ0PzLUJC0Y/mail-swipe-script-to-create-temporary.html) - [Zracker - Zip File Password BruteForcing Utility Tool based on CPU-Power](http://feedproxy.google.com/~r/PentestTools/~3/JpwWn2_Zbp0/zracker-zip-file-password-bruteforcing.html) - [Mikrot8Over - Fast Exploitation Tool For Mikrotik RouterOS](http://feedproxy.google.com/~r/PentestTools/~3/aQLOKFbFFkk/mikrot8over-fast-exploitation-tool-for.html) - [MEDUZA - A More Or Less Universal SSL Unpinning Tool For iOS](http://feedproxy.google.com/~r/PentestTools/~3/2cKyd7r_Vs8/meduza-more-or-less-universal-ssl.html) - [Nuubi Tools - Information Ghatering, Scanner And Recon](http://feedproxy.google.com/~r/PentestTools/~3/fe4mT_YR5UU/nuubi-tools-information-ghatering.html) - [DamnVulnerableCryptoApp - An App With Really Insecure Crypto](http://feedproxy.google.com/~r/PentestTools/~3/uWwl058c2EQ/damnvulnerablecryptoapp-app-with-really.html) - [O365Enum - Enumerate Valid Usernames From Office 365 Using ActiveSync, Autodiscover V1, Or Office.Com Login Page](http://feedproxy.google.com/~r/PentestTools/~3/2PdAA_3kJRQ/o365enum-enumerate-valid-usernames-from.html) - [Wave-Share - Serverless, Peer-To-Peer, Local File Sharing Through Sound](http://feedproxy.google.com/~r/PentestTools/~3/ICg74ohc_Lk/wave-share-serverless-peer-to-peer.html) - [Gitjacker - Leak Git Repositories From Misconfigured Websites](http://feedproxy.google.com/~r/PentestTools/~3/9wKv0oGAU6g/gitjacker-leak-git-repositories-from.html) - [NashaVM - A Virtual Machine For .NET Files And Its Runtime Was Made In C++/CLI](http://feedproxy.google.com/~r/PentestTools/~3/UWFto2G1fkY/nashavm-virtual-machine-for-net-files.html) - [SwiftBelt - A macOS Enumeration Tool Inspired By Harmjoy'S Windows-based Seatbelt Enumeration Tool](http://feedproxy.google.com/~r/PentestTools/~3/imkt6ka5_MQ/swiftbelt-macos-enumeration-tool.html) - [C41N - An Automated Rogue Access Point Setup Tool](http://feedproxy.google.com/~r/PentestTools/~3/ePgZCn11yJQ/c41n-automated-rogue-access-point-setup.html) - [vPrioritizer - Tool To Understand The Contextualized Risk (vPRisk) On Asset-Vulnerability Relationship Level Across The Organization](http://feedproxy.google.com/~r/PentestTools/~3/vOiHE89Lmqw/vprioritizer-tool-to-understand.html) - [CSRFER - Tool To Generate CSRF Payloads Based On Vulnerable Requests](http://feedproxy.google.com/~r/PentestTools/~3/JsaHZGJDG-I/csrfer-tool-to-generate-csrf-payloads.html) - [GHunt - Investigate Google Accounts With Emai](http://feedproxy.google.com/~r/PentestTools/~3/G1OHFyV9ZgU/ghunt-investigate-google-accounts-with.html) - [Offering Users More For Their Activity - Similar Items Upon Checkout](http://feedproxy.google.com/~r/PentestTools/~3/oZv7iE3haj0/offering-users-more-for-their-activity.html) - [Lockphish - The First Tool For Phishing Attacks On The Lock Screen, Designed To Grab Windows Credentials, Android PIN And iPhone Passcode](http://feedproxy.google.com/~r/PentestTools/~3/Plvy_Rl1lWA/lockphish-first-tool-for-phishing.html) - [IoTMap - Research Project On Heterogeneous IoT Protocols Modelling](http://feedproxy.google.com/~r/PentestTools/~3/yr7El3AtACY/iotmap-research-project-on.html) - [Kube-Score - Kubernetes Object Analysis With Recommendations For Improved Reliability And Security](http://feedproxy.google.com/~r/PentestTools/~3/Gghdm3QDnpk/kube-score-kubernetes-object-analysis.html) - [SCREEN_KILLER - Tool To Track Progress For Reporting (Capture Screenshot, Commands And Outputs) During Pentest Engagement And OSCP](http://feedproxy.google.com/~r/PentestTools/~3/D9AgK5L-TsE/screenkiller-tool-to-track-progress-for.html) - [OFFPORT_KILLER - This Tool Aims At Automating The Identification Of Potential Service Running Behind Ports Identified Manually Either Through Manual Scan Or Services Running Locally](http://feedproxy.google.com/~r/PentestTools/~3/78ROR5zW6pI/offportkiller-this-tool-aims-at.html) - [AdvPhishing - This Is Advance Phishing Tool! OTP PHISHING](http://feedproxy.google.com/~r/PentestTools/~3/9rL0P-wabG0/advphishing-this-is-advance-phishing.html) - [Timewarrior - Commandline Time Reporting](http://feedproxy.google.com/~r/PentestTools/~3/535wqOfUx-Y/timewarrior-commandline-time-reporting.html) - [Asnap - Tool To Render Recon Phase Easier By Providing Updated Data About Which Companies Owns Which Ipv4 Or Ipv6 Addresses](http://feedproxy.google.com/~r/PentestTools/~3/VOKUQlUfTOk/asnap-tool-to-render-recon-phase-easier.html) - [uriDeep - Unicode Encoding Attacks With Machine Learning](http://feedproxy.google.com/~r/PentestTools/~3/3x4bVKUd5GY/urideep-unicode-encoding-attacks-with.html) - [smbAutoRelay - Provides The Automation Of SMB/NTLM Relay Technique For Pentesting And Red Teaming Exercises In Active Directory Environments](http://feedproxy.google.com/~r/PentestTools/~3/NvW7RawQDkE/smbautorelay-provides-automation-of.html) - [Powerglot - Encodes Offensive Powershell Scripts Using Polyglots](http://feedproxy.google.com/~r/PentestTools/~3/zv31f0xkA7c/powerglot-encodes-offensive-powershell.html) - [Pastego - Scrape/Parse Pastebin Using GO And Expression Grammar (PEG)](http://feedproxy.google.com/~r/PentestTools/~3/ggJCpOTjD6A/pastego-scrapeparse-pastebin-using-go.html) - [H2Csmuggler - HTTP Request Smuggling Over HTTP/2 Cleartext (H2C)](http://feedproxy.google.com/~r/PentestTools/~3/hb3EVb84Wm4/h2csmuggler-http-request-smuggling-over.html) - [mapCIDR - Small Utility Program To Perform Multiple Operations For A Given subnet/CIDR Ranges](http://feedproxy.google.com/~r/PentestTools/~3/6x_E2MWbBXg/mapcidr-small-utility-program-to.html) - [Lil-Pwny - Auditing Active Directory Passwords Using Multiprocessing In Python](http://feedproxy.google.com/~r/PentestTools/~3/9RJQyVtuRiQ/lil-pwny-auditing-active-directory.html) - [Polypyus - Learns To Locate Functions In Raw Binaries By Extracting Known Functions From Similar Binaries](http://feedproxy.google.com/~r/PentestTools/~3/ZpledTN5EgI/polypyus-learns-to-locate-functions-in.html) - [NERVE - Network Exploitation, Reconnaissance & Vulnerability Engine](http://feedproxy.google.com/~r/PentestTools/~3/6AyTn1gInq8/nerve-network-exploitation.html) - [Cooolis-ms - A Server That Supports The Metasploit Framework RPC](http://feedproxy.google.com/~r/PentestTools/~3/_qWg7ZFvgwQ/cooolis-ms-server-that-supports.html) - [PwnedPasswordsChecker - Search (Offline) If Your Password (NTLM Or SHA1 Format) Has Been Leaked (HIBP Passwords List V5)](http://feedproxy.google.com/~r/PentestTools/~3/HtE1DiO8-PE/pwnedpasswordschecker-search-offline-if.html) - [Wacker - A WPA3 Dictionary Cracker](http://feedproxy.google.com/~r/PentestTools/~3/aS1cYBb7044/wacker-wpa3-dictionary-cracker.html) - [SharpSecDump - .Net Port Of The Remote SAM + LSA Secrets Dumping Functionality Of Impacket'S Secretsdump.Py](http://feedproxy.google.com/~r/PentestTools/~3/8RalQfAQVAM/sharpsecdump-net-port-of-remote-sam-lsa.html) - [Velociraptor - Endpoint Visibility and Collection Tool](http://feedproxy.google.com/~r/PentestTools/~3/v-j8yyHjAqc/velociraptor-endpoint-visibility-and.html) - [Go-Dork - The Fastest Dork Scanner Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/T_DF1kVlo9M/go-dork-fastest-dork-scanner-written-in.html) - [PwnXSS - Vulnerability XSS Scanner Exploit](http://feedproxy.google.com/~r/PentestTools/~3/hswp4VMm-Ps/pwnxss-vulnerability-xss-scanner-exploit.html) - [PSMDATP - PowerShell Module For Managing Microsoft Defender Advanced Threat Protection](http://feedproxy.google.com/~r/PentestTools/~3/QJIT_UrXx2E/psmdatp-powershell-module-for-managing.html) - [SitRep - Extensible, Configurable Host Triage](http://feedproxy.google.com/~r/PentestTools/~3/R0IorqSgqBs/sitrep-extensible-configurable-host.html) - [Enum4Linux - A Linux Alternative To Enum.Exe For Enumerating Data From Windows And Samba Hosts](http://feedproxy.google.com/~r/PentestTools/~3/sZ0NLoU2pmo/enum4linux-linux-alternative-to-enumexe.html) - [Dnxfirewall - A Pure Python Next Generation Firewall Built On Top Of Linux Kernel/Netfilter](http://feedproxy.google.com/~r/PentestTools/~3/_yxvJMSwP00/dnxfirewall-pure-python-next-generation.html) - [FLUFFI (Fully Localized Utility For Fuzzing Instantaneously) - A Distributed Evolutionary Binary Fuzzer For Pentesters](http://feedproxy.google.com/~r/PentestTools/~3/7WMHthvZGOI/fluffi-fully-localized-utility-for.html) - [GRAT2 - Command And Control (C2) Project For Learning Purpose](http://feedproxy.google.com/~r/PentestTools/~3/KOYEmYSRMu4/grat2-command-and-control-c2-project.html) - [VMPDump - A Dynamic VMP Dumper And Import Fixer](http://feedproxy.google.com/~r/PentestTools/~3/VVtDDKnnz_Y/vmpdump-dynamic-vmp-dumper-and-import.html) - [Moriarty-Project - This Tool Gives Information About The Phone Number That You Entered](http://feedproxy.google.com/~r/PentestTools/~3/Yyz2jRMghaM/moriarty-project-this-tool-gives.html) - [Frp - A Fast Reverse Proxy To Help You Expose A Local Server Behind A NAT Or Firewall To The Internet](http://feedproxy.google.com/~r/PentestTools/~3/GjMMOE5tJPs/frp-fast-reverse-proxy-to-help-you.html) - [CRLFuzz - A Fast Tool To Scan CRLF Vulnerability Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/mIMcLEdEO-Y/crlfuzz-fast-tool-to-scan-crlf.html) - [Winshark - A Wireshark Plugin To Instrument ETW](http://feedproxy.google.com/~r/PentestTools/~3/vcNH3laXgsg/winshark-wireshark-plugin-to-instrument.html) - [Winshark - A Wireshark Plugin To Instrument ETW](http://feedproxy.google.com/~r/PentestTools/~3/vcNH3laXgsg/winshark-wireshark-plugin-to-instrument.html) - [Unimap - Scan Only Once By IP Address And Reduce Scan Times With Nmap For Large Amounts Of Data](http://feedproxy.google.com/~r/PentestTools/~3/u67qPTejFCk/unimap-scan-only-once-by-ip-address-and.html) - [Bxss - A Blind XSS Injector Tool](http://feedproxy.google.com/~r/PentestTools/~3/N6OJ502fYVg/bxss-blind-xss-injector-tool.html) - [CRLFMap - A Tool To Find HTTP Splitting Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/fh8M4QNEvEU/crlfmap-tool-to-find-http-splitting.html) - [Zin - A Payload Injector For Bugbounties Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/keMyIdRISpM/zin-payload-injector-for-bugbounties.html) - [dorkX - Pipe Different Tools With Google Dork Scanner](http://feedproxy.google.com/~r/PentestTools/~3/D9zzXBsdBjk/dorkx-pipe-different-tools-with-google.html) - [AES Finder - Utility To Find AES Keys In Running Processes](http://feedproxy.google.com/~r/PentestTools/~3/GypI0kZbP-g/aes-finder-utility-to-find-aes-keys-in.html) - [Croc - Easily And Securely Send Things From One Computer To Another](http://feedproxy.google.com/~r/PentestTools/~3/1gIIPgDlbQc/croc-easily-and-securely-send-things.html) - [ActiveDirectoryEnumeration - Enumerate AD Through LDAP With A Collection Of Helpfull Scripts Being Bundled](http://feedproxy.google.com/~r/PentestTools/~3/qGafaDMGWj4/activedirectoryenumeration-enumerate-ad.html) - [Rbcd-Attack - Kerberos Resource-Based Constrained Delegation Attack From Outside Using Impacket](http://feedproxy.google.com/~r/PentestTools/~3/LzzH-LC3i2Q/rbcd-attack-kerberos-resource-based.html) - [WMIHACKER - A Bypass Anti-virus Software Lateral Movement Command Execution Tool](http://feedproxy.google.com/~r/PentestTools/~3/dkRbV_ANAKk/wmihacker-bypass-anti-virus-software.html) - [Chimera - PowerShell Obfuscation Script Designed To Bypass AMSI And Commercial Antivirus Solutions](http://feedproxy.google.com/~r/PentestTools/~3/fXwvO9lv8QE/chimera-powershell-obfuscation-script.html) - [DockerENT - The Only Open-Source Tool To Analyze Vulnerabilities And Configuration Issues With Running Docker Container(S) And Docker Networks](http://feedproxy.google.com/~r/PentestTools/~3/zW0JbQLn_9o/dockerent-only-open-source-tool-to.html) - [HTTP-revshell - Powershell Reverse Shell Using HTTP/S Protocol With AMSI Bypass And Proxy Aware](http://feedproxy.google.com/~r/PentestTools/~3/DP6tdbTO9BQ/http-revshell-powershell-reverse-shell.html) - [Some-Tools - Install And Keep Up To Date Some Pentesting Tools](http://feedproxy.google.com/~r/PentestTools/~3/rFMLhmsD1H8/some-tools-install-and-keep-up-to-date.html) - [MZAP - Multiple Target ZAP Scanning](http://feedproxy.google.com/~r/PentestTools/~3/9avRYndlq40/mzap-multiple-target-zap-scanning.html) - [Monsoon - Fast HTTP Enumerator](http://feedproxy.google.com/~r/PentestTools/~3/l_jCm0lhjM8/monsoon-fast-http-enumerator.html) - [Avcleaner - C/C++ Source Obfuscator For Antivirus Bypass](http://feedproxy.google.com/~r/PentestTools/~3/EUqib9t1FN8/avcleaner-cc-source-obfuscator-for.html) - [Spyre - Simple YARA-based IOC Scanner](http://feedproxy.google.com/~r/PentestTools/~3/FuSa2QH-Ojw/spyre-simple-yara-based-ioc-scanner.html) - [Safety - Check Your Installed Dependencies For Known Security Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/rdmRMSunj-A/safety-check-your-installed.html) - [Anchore Engine - A Service That Analyzes Docker Images And Applies User-Defined Acceptance Policies To Allow Automated Container Image Validation And Certification](http://feedproxy.google.com/~r/PentestTools/~3/Ll18a8n6Jxg/anchore-engine-service-that-analyzes.html) - [Rakkess - Kubectl Plugin To Show An Access Matrix For K8S Server Resources](http://feedproxy.google.com/~r/PentestTools/~3/2Hkk371VZJs/rakkess-kubectl-plugin-to-show-access.html) - [Browsertunnel - Surreptitiously Exfiltrate Data From The Browser Over DNS](http://feedproxy.google.com/~r/PentestTools/~3/yBy34eM1n_Y/browsertunnel-surreptitiously.html) - [Bpytop - Linux/OSX/FreeBSD Resource Monitor](http://feedproxy.google.com/~r/PentestTools/~3/WN3AZqWDWYA/bpytop-linuxosxfreebsd-resource-monitor.html) - [PurpleCloud - An Infrastructure As Code (IaC) Deployment Of A Small Active Directory Pentest Lab In The Cloud](http://feedproxy.google.com/~r/PentestTools/~3/CAxjGNhM4x0/purplecloud-infrastructure-as-code-iac.html) - [OpenRedireX - Asynchronous Open redirect Fuzzer for Humans](http://feedproxy.google.com/~r/PentestTools/~3/0xfmn6oB8-Q/openredirex-asynchronous-open-redirect.html) - [SQLMap v1.4.9 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/dWU4PwMV2eM/sqlmap-v149-automatic-sql-injection-and.html) - [Autovpn - Create On Demand Disposable OpenVPN Endpoints On AWS](http://feedproxy.google.com/~r/PentestTools/~3/lxGVU3oWwCE/autovpn-create-on-demand-disposable.html) - [VPS-Docker-For-Pentest - Create A VPS On Google Cloud Platform Or Digital Ocean Easily With The Docker For Pentest](http://feedproxy.google.com/~r/PentestTools/~3/IdBMpDV2-YE/vps-docker-for-pentest-create-vps-on.html) - [Hardcodes - Find Hardcoded Strings From Source Code](http://feedproxy.google.com/~r/PentestTools/~3/YRv0CYJQebY/hardcodes-find-hardcoded-strings-from.html) - [Wordlist_Generator - Unique Wordlist Generator Of Unique Wordlists](http://feedproxy.google.com/~r/PentestTools/~3/7KJG42Tdj8E/wordlistgenerator-unique-wordlist.html) - [Faraday v3.12 - Collaborative Penetration Test and Vulnerability Management Platform](http://feedproxy.google.com/~r/PentestTools/~3/u3YkDNeo6eM/faraday-v312-collaborative-penetration.html) - [H4Rpy - Automated WPA/WPA2 PSK Attack Tool](http://feedproxy.google.com/~r/PentestTools/~3/lJgSSlMa3DE/h4rpy-automated-wpawpa2-psk-attack-tool.html) - [SNIcat - Server Name Indication Concatenator](http://feedproxy.google.com/~r/PentestTools/~3/xUcBOGG3Tco/snicat-server-name-indication.html) - [Geo-Recon - An OSINT CLI Tool Desgined To Fast Track IP Reputation And Geo-locaton Look Up For Security Analysts](http://feedproxy.google.com/~r/PentestTools/~3/Nvsl-cXK6Qk/geo-recon-osint-cli-tool-desgined-to.html) - [Bbrecon - Python Library And CLI For The Bug Bounty Recon API](http://feedproxy.google.com/~r/PentestTools/~3/ctp2uR7Xquc/bbrecon-python-library-and-cli-for-bug.html) - [SpaceSiren - A Honey Token Manager And Alert System For AWS](http://feedproxy.google.com/~r/PentestTools/~3/SIBlEXl2Mhc/spacesiren-honey-token-manager-and.html) - [LOLBITS v2.0.0 - C2 Framework That Uses Background Intelligent Transfer Service (BITS) As Communication Protocol And Direct Syscalls + Dinvoke For EDR User-Mode Hooking Evasion](http://feedproxy.google.com/~r/PentestTools/~3/R2WwQr8F47Q/lolbits-v200-c2-framework-that-uses.html) - [Killchain - A Unified Console To Perform The "Kill Chain" Stages Of Attacks](http://feedproxy.google.com/~r/PentestTools/~3/GUfD7UUO73M/killchain-unified-console-to-perform.html) - [CrossC2 - Generate CobaltStrike's Cross-Platform Payload](http://feedproxy.google.com/~r/PentestTools/~3/62-5E9fU0nY/crossc2-generate-cobaltstrikes-cross.html) - [DVS - D(COM) V(ulnerability) S(canner) AKA Devious Swiss Army Knife](http://feedproxy.google.com/~r/PentestTools/~3/-CgfAXeYBbQ/dvs-dcom-vulnerability-scanner-aka.html) - [Mihari - A Helper To Run OSINT Queries & Manage Results Continuously](http://feedproxy.google.com/~r/PentestTools/~3/oD9c2Ho-HpE/mihari-helper-to-run-osint-queries.html) - [SourceWolf - Amazingly Fast Response Crawler To Find Juicy Stuff In The Source Code!](http://feedproxy.google.com/~r/PentestTools/~3/vnQIoGUz_aI/sourcewolf-amazingly-fast-response.html) - [Iblessing - An iOS Security Exploiting Toolkit, It Mainly Includes Application Information Collection, Static Analysis And Dynamic Analysis](http://feedproxy.google.com/~r/PentestTools/~3/Q3c4cB_8CVc/iblessing-ios-security-exploiting.html) - [Urlgrab - A Golang Utility To Spider Through A Website Searching For Additional Links](http://feedproxy.google.com/~r/PentestTools/~3/o26F28QBGHY/urlgrab-golang-utility-to-spider.html) - [Osintgram - A OSINT Tool On Instagram](http://feedproxy.google.com/~r/PentestTools/~3/stdKgt-1gJI/osintgram-osint-tool-on-instagram.html) - [Vulnerable-AD - Create A Vulnerable Active Directory That'S Allowing You To Test Most Of Active Directory Attacks In Local Lab](http://feedproxy.google.com/~r/PentestTools/~3/d758Ikb_OAA/vulnerable-ad-create-vulnerable-active.html) - [Bluescan - A Powerful Bluetooth Scanner For Scanning BR/LE Devices, LMP, SDP, GATT And Vulnerabilities!](http://feedproxy.google.com/~r/PentestTools/~3/g1Yto8yeP_4/bluescan-powerful-bluetooth-scanner-for.html) - [SharpHose - Asynchronous Password Spraying Tool In C# For Windows Environments](http://feedproxy.google.com/~r/PentestTools/~3/M0P9g3OrLBs/sharphose-asynchronous-password.html) - [Bashtop - Linux/OSX/FreeBSD Resource Monitor](http://feedproxy.google.com/~r/PentestTools/~3/-T0Iaw7N6oc/bashtop-linuxosxfreebsd-resource-monitor.html) - [Hack-Tools - The All-In-One Red Team Extension For Web Pentester](http://feedproxy.google.com/~r/PentestTools/~3/40sICXRd1WM/hack-tools-all-in-one-red-team.html) - [ezEmu - Simple Execution Of Commands For Defensive Tuning/Research](http://feedproxy.google.com/~r/PentestTools/~3/l30aPVgljY0/ezemu-simple-execution-of-commands-for.html) - [VolExp - Volatility Explorer](http://feedproxy.google.com/~r/PentestTools/~3/c0O_S9gtClw/volexp-volatility-explorer.html) - [AWS Recon - Multi-threaded AWS Inventory Collection Tool With A Focus On Security-Relevant Resources And Metadata](http://feedproxy.google.com/~r/PentestTools/~3/mCRMljaSu2w/aws-recon-multi-threaded-aws-inventory.html) - [Yeti - Your Everyday Threat Intelligence](http://feedproxy.google.com/~r/PentestTools/~3/i2mVG7ADgJY/yeti-your-everyday-threat-intelligence.html) - [Parth - Heuristic Vulnerable Parameter Scanner](http://feedproxy.google.com/~r/PentestTools/~3/m4wLETpWmGk/parth-heuristic-vulnerable-parameter.html) - [Pyre-Check - Performant Type-Checking For Python](http://feedproxy.google.com/~r/PentestTools/~3/11ghEtFIPr8/pyre-check-performant-type-checking-for.html) - [Intel Owl - Analyze Files, Domains, IPs In Multiple Ways From A Single API At Scale](http://feedproxy.google.com/~r/PentestTools/~3/tv-NcoUlPpE/intel-owl-analyze-files-domains-ips-in.html) - [Scan-For-Webcams - Scan For Webcams In The Internet](http://feedproxy.google.com/~r/PentestTools/~3/soTAChdKCy8/scan-for-webcams-scan-for-webcams-in.html) - [Cloud-Sniper - Virtual Security Operations Center](http://feedproxy.google.com/~r/PentestTools/~3/lvLipNAsBCA/cloud-sniper-virtual-security.html) - [SecGen - Create Randomly Insecure VMs](http://feedproxy.google.com/~r/PentestTools/~3/vwgVktVQxiE/secgen-create-randomly-insecure-vms.html) - [ADBSploit - A Python Based Tool For Exploiting And Managing Android Devices Via ADB](http://feedproxy.google.com/~r/PentestTools/~3/aWZQxx87ZOQ/adbsploit-python-based-tool-for.html) - [Wonitor - Fast, Zero Config Web Endpoint Change Monitor](http://feedproxy.google.com/~r/PentestTools/~3/lHbLtwhkOOs/wonitor-fast-zero-config-web-endpoint.html) - [DropEngine - Malleable Payloads!](http://feedproxy.google.com/~r/PentestTools/~3/CviZ5LqxLXQ/dropengine-malleable-payloads.html) - [ReconSpider - Most Advanced Open Source Intelligence (OSINT) Framework For Scanning IP Address, Emails, Websites, Organizations](http://feedproxy.google.com/~r/PentestTools/~3/2Y14ewQJS1Q/reconspider-most-advanced-open-source.html) - [Pagodo - Automate Google Hacking Database Scraping And Searching](http://feedproxy.google.com/~r/PentestTools/~3/M07zJ17Oieo/pagodo-automate-google-hacking-database.html) - [Kali Linux 2020.3 Release - Penetration Testing and Ethical Hacking Linux Distribution](http://feedproxy.google.com/~r/PentestTools/~3/zC4oYkLKLdY/kali-linux-20203-release-penetration.html) - [PurpleSharp - C# Adversary Simulation Tool That Executes Adversary Techniques With The Purpose Of Generating Attack Telemetry In Monitored Windows Environments](http://feedproxy.google.com/~r/PentestTools/~3/IzAVJtYAZHU/purplesharp-c-adversary-simulation-tool.html) - [Sinter - A User-Mode Application Authorization System For MacOS Written In Swift](http://feedproxy.google.com/~r/PentestTools/~3/8Kt4XvbKfF0/sinter-user-mode-application.html) - [IoT-PT - A Virtual Environment For Pentesting IoT Devices](http://feedproxy.google.com/~r/PentestTools/~3/xI86e6AIgtE/iot-pt-virtual-environment-for.html) - [Urlbuster - Powerful Mutable Web Directory Fuzzer To Bruteforce Existing And/Or Hidden Files Or Directories](http://feedproxy.google.com/~r/PentestTools/~3/nLo8IxobO1A/urlbuster-powerful-mutable-web.html) - [PowerSharpPack - Many usefull offensive CSharp Projects wraped into Powershell for easy usage](http://feedproxy.google.com/~r/PentestTools/~3/tu7RPbSD32c/powersharppack-many-usefull-offensive.html) - [Spybrowse - Code Developed To Steal Certain Browser Config Files (History, Preferences, Etc)](http://feedproxy.google.com/~r/PentestTools/~3/16nx030JA64/spybrowse-code-developed-to-steal.html) - [CheckXSS - Detect XSS vulnerability in Web Applications](http://feedproxy.google.com/~r/PentestTools/~3/hYN1k2fAie4/checkxss-detect-xss-vulnerability-in.html) - [Phirautee - A PoC Crypto Virus To Spread User Awareness About Attacks And Implications Of Ransomwares](http://feedproxy.google.com/~r/PentestTools/~3/Z6nqxV78cEQ/phirautee-poc-crypto-virus-to-spread.html) - [Unfollow-Plus - Automated Instagram Unfollower Bot](http://feedproxy.google.com/~r/PentestTools/~3/V_Pju0doVxo/unfollow-plus-automated-instagram.html) - [DAGOBAH - Open Source Tool To Generate Internal Threat Intelligence, Inventory & Compliance Data From AWS Resources](http://feedproxy.google.com/~r/PentestTools/~3/heCluXrDIA0/dagobah-open-source-tool-to-generate.html) - [AWS Report - A Tool For Analyzing Amazon Resources](http://feedproxy.google.com/~r/PentestTools/~3/pKUBrpmSvbE/aws-report-tool-for-analyzing-amazon.html) - [AWS Report - A Tool For Analyzing Amazon Resources.](http://feedproxy.google.com/~r/PentestTools/~3/pKUBrpmSvbE/aws-report-tool-for-analyzing-amazon.html) - [Bastillion - A Web-Based SSH Console That Centrally Manages Administrative Access To Systems](http://feedproxy.google.com/~r/PentestTools/~3/nyadoE_TPlE/bastillion-web-based-ssh-console-that.html) - [Nautilus - A Grammar Based Feedback Fuzzer](http://feedproxy.google.com/~r/PentestTools/~3/8Xdw3mHfTWc/nautilus-grammar-based-feedback-fuzzer.html) - [SharpChromium - .NET 4.0 CLR Project To Retrieve Chromium Data, Such As Cookies, History And Saved Logins](http://feedproxy.google.com/~r/PentestTools/~3/uhBB_ctbUKk/sharpchromium-net-40-clr-project-to.html) - [SkyArk - Helps To Discover, Assess And Secure The Most Privileged Entities In Azure And AWS](http://feedproxy.google.com/~r/PentestTools/~3/fA1njXZatyo/skyark-helps-to-discover-assess-and.html) - [PE Tree - Python Module For Viewing Portable Executable (PE) Files In A Tree-View](http://feedproxy.google.com/~r/PentestTools/~3/tRB-G7g7FNw/pe-tree-python-module-for-viewing.html) - [Flask-Session-Cookie-Manager - Flask Session Cookie Decoder/Encoder](http://feedproxy.google.com/~r/PentestTools/~3/RCa4AMavP_4/flask-session-cookie-manager-flask.html) - [Arcane - A Simple Script Designed To Backdoor iOS Packages (Iphone-Arm) And Create The Necessary Resources For APT Repositories](http://feedproxy.google.com/~r/PentestTools/~3/6dNxma-yOxI/arcane-simple-script-designed-to.html) - [IRFuzz - Simple Scanner with Yara Rule](http://feedproxy.google.com/~r/PentestTools/~3/dAGy8qxNrf4/irfuzz-simple-scanner-with-yara-rule.html) - [Evine - Interactive CLI Web Crawler](http://feedproxy.google.com/~r/PentestTools/~3/msGReDRfM18/evine-interactive-cli-web-crawler.html) - [SharpAppLocker - C# Port Of The Get-AppLockerPolicy PS Cmdlet](http://feedproxy.google.com/~r/PentestTools/~3/r3EqsmFsAyk/sharpapplocker-c-port-of-get.html) - [PhishingKitTracker - Let's Track Phishing Kits To Give To Research Community Raw Material To Stud](http://feedproxy.google.com/~r/PentestTools/~3/tYI46yw5MEg/phishingkittracker-lets-track-phishing.html) - [FestIn - S3 Bucket Weakness Discovery](http://feedproxy.google.com/~r/PentestTools/~3/IsCkuOcHH-s/festin-s3-bucket-weakness-discovery.html) - [Chalumeau - Automated, Extendable And Customizable Credential Dumping Tool](http://feedproxy.google.com/~r/PentestTools/~3/n5PhxTEkoD0/chalumeau-automated-extendable-and.html) - [Gtunnel - A Robust Tunelling Solution Written In Golang](http://feedproxy.google.com/~r/PentestTools/~3/rJJ0YBAATJ8/gtunnel-robust-tunelling-solution.html) - [Taowu - A CobaltStrike Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/FoviBkgs9Wk/taowu-cobaltstrike-toolkit.html) - [UEFI_RETool - A Tool For UEFI Firmware Reverse Engineering](http://feedproxy.google.com/~r/PentestTools/~3/jJswEzISv-A/uefiretool-tool-for-uefi-firmware.html) - [Netenum - A Tool To Passively Discover Active Hosts On A Network](http://feedproxy.google.com/~r/PentestTools/~3/HSBbC7UuzVs/netenum-tool-to-passively-discover.html) - [DLInjector-GUI - DLL Injector Graphical User Interface](http://feedproxy.google.com/~r/PentestTools/~3/_kClm9oJJUM/dlinjector-gui-dll-injector-graphical.html) - [Xeca - PowerShell Payload Generator](http://feedproxy.google.com/~r/PentestTools/~3/xsbLQOGTFuA/xeca-powershell-payload-generator.html) - [Cnitch - Container Snitch Checks Running Processes Under The Docker Engine And Alerts If Any Are Found To Be Running As Root](http://feedproxy.google.com/~r/PentestTools/~3/6FGeYMW_2E0/cnitch-container-snitch-checks-running.html) - [Mistica - An Open Source Swiss Army Knife For Arbitrary Communication Over Application Protocols](http://feedproxy.google.com/~r/PentestTools/~3/3rKmWTT6gLw/mistica-open-source-swiss-army-knife.html) - [DeimosC2 - A Golang Command And Control Framework For Post-Exploitation](http://feedproxy.google.com/~r/PentestTools/~3/TLSuJyOoAGg/deimosc2-golang-command-and-control.html) - [EternalBlueC - EternalBlue Suite Remade In C/C++ Which Includes: MS17-010 Exploit, EternalBlue Vulnerability Detector, DoublePulsar Detector And DoublePulsar Shellcode & DLL Uploader](http://feedproxy.google.com/~r/PentestTools/~3/YshWuG7n0_s/eternalbluec-eternalblue-suite-remade.html) - [CWFF - Create Your Custom Wordlist For Fuzzing](http://feedproxy.google.com/~r/PentestTools/~3/bTZRr6ehdsY/cwff-create-your-custom-wordlist-for.html) - [Cloudsplaining - An AWS IAM Security Assessment Tool That Identifies Violations Of Least Privilege And Generates A Risk-Prioritized Report](http://feedproxy.google.com/~r/PentestTools/~3/-7enjmYyTw8/cloudsplaining-aws-iam-security.html) - [Kubei - A Flexible Kubernetes Runtime Scanner](http://feedproxy.google.com/~r/PentestTools/~3/7jhcROllIh4/kubei-flexible-kubernetes-runtime.html) - [dazzleUP - A Tool That Detects The Privilege Escalation Vulnerabilities Caused By Misconfigurations And Missing Updates In The Windows OS](http://feedproxy.google.com/~r/PentestTools/~3/6MJqSmNP9VY/dazzleup-tool-that-detects-privilege.html) - [uDork - Tool That Uses Advanced Google Search Techniques To Obtain Sensitive Information In Files Or Directories, Find IoT Devices, Detect Versions Of Web Applications, And So On](http://feedproxy.google.com/~r/PentestTools/~3/evrS1p3uO9k/udork-tool-that-uses-advanced-google.html) - [Oralyzer - Tool To Identify Open Redirection](http://feedproxy.google.com/~r/PentestTools/~3/UpP-Msg0ZAU/oralyzer-tool-to-identify-open.html) - [Kubebox - Terminal And Web Console For Kubernetes](http://feedproxy.google.com/~r/PentestTools/~3/jhL0O0WVKkw/kubebox-terminal-and-web-console-for.html) - [Commit Stream - OSINT Tool For Finding Github Repositories By Extracting Commit Logs In Real Time From The Github Event API](http://feedproxy.google.com/~r/PentestTools/~3/hjAUze0ZEkI/commit-stream-osint-tool-for-finding.html) - [Oralyzer - Open Redirection Analyzer](http://feedproxy.google.com/~r/PentestTools/~3/tedUK-Ukf8s/oralyzer-open-redirection-analyzer.html) - [SNOWCRASH - A Polyglot Payload Generator](http://feedproxy.google.com/~r/PentestTools/~3/vaMcokVOhzg/snowcrash-polyglot-payload-generator.html) - [Intelspy - Perform Automated Network Reconnaissance Scans](http://feedproxy.google.com/~r/PentestTools/~3/4HcknKGuMCo/intelspy-perform-automated-network.html) - [HawkScan - Security Tool For Reconnaissance And Information Gathering On A Website](http://feedproxy.google.com/~r/PentestTools/~3/6OnYL4uwfKo/hawkscan-security-tool-for.html) - [TrustJack - Yet Another PoC For Hijacking DLLs in Windows](http://feedproxy.google.com/~r/PentestTools/~3/DzvS1ceHIKQ/trustjack-yet-another-poc-for-hijacking.html) - [HawkScan - Security Tool For Reconnaissance And Information Gathering On A Website. (Python 2.X &Amp; 3.X)](http://feedproxy.google.com/~r/PentestTools/~3/6OnYL4uwfKo/hawkscan-security-tool-for.html) - [Sitedorks - Search Google/Bing/DuckDuckGo/Yandex/Yahoo For A Search Term With Different Websites](http://feedproxy.google.com/~r/PentestTools/~3/9zGBhKqPzSg/sitedorks-search-googlebingduckduckgoya.html) - [reNgine - An Automated Reconnaissance Framework Meant For Gathering Information During Penetration Testing Of Web Applications](http://feedproxy.google.com/~r/PentestTools/~3/DqEKuwTfcIY/rengine-automated-reconnaissance.html) - [Autoenum - Automatic Service Enumeration Script](http://feedproxy.google.com/~r/PentestTools/~3/ouPKC-dV2rk/autoenum-automatic-service-enumeration.html) - [AuthMatrix - A Burp Suite Extension That Provides A Simple Way To Test Authorization](http://feedproxy.google.com/~r/PentestTools/~3/3qug9-U-7gg/authmatrix-burp-suite-extension-that.html) - [Permission Manager - A Project That Brings Sanity To Kubernetes RBAC And Users Management, Web UI FTW](http://feedproxy.google.com/~r/PentestTools/~3/7QHE-VirROA/permission-manager-project-that-brings.html) - [Quiver - Tool To Manage All Of Your Tools For Bug Bounty Hunting And Penetration Testing](http://feedproxy.google.com/~r/PentestTools/~3/Q-JC2NLFgqI/quiver-tool-to-manage-all-of-your-tools.html) - [Onex - A Library Of Hacking Tools For Termux And Other Linux Distributions](http://feedproxy.google.com/~r/PentestTools/~3/C3LAwljExG4/onex-library-of-hacking-tools-for.html) - [Kali-Linux-Tools-Interface - Graphical Web Interface Developed To Facilitate The Use Of Security Information Tools](http://feedproxy.google.com/~r/PentestTools/~3/6e2Xd2jTSi4/kali-linux-tools-interface-graphical.html) - [Lazybee - Wordlist Generator Tool for Termux](http://feedproxy.google.com/~r/PentestTools/~3/mlKLXBNFceE/lazybee-wordlist-generator-tool-for.html) - [NTLMRecon - A Tool To Enumerate Information From NTLM Authentication Enabled Web Endpoints](http://feedproxy.google.com/~r/PentestTools/~3/iInE04unlfs/ntlmrecon-tool-to-enumerate-information.html) - [ADB-Toolkit - Tool for testing your Android device](http://feedproxy.google.com/~r/PentestTools/~3/9UFrHzThs_s/adb-toolkit-tool-for-testing-your.html) - [hackerEnv - An Automation Tool That Quickly And Easily Sweep IPs And Scan Ports, Vulnerabilities And Exploit Them](http://feedproxy.google.com/~r/PentestTools/~3/kFzf2FsM6gM/hackerenv-automation-tool-that-quickly.html) - [PENIOT - Penetration Testing Tool for IoT](http://feedproxy.google.com/~r/PentestTools/~3/zo7DgfaHfF4/peniot-penetration-testing-tool-for-iot.html) - [Lazymux - A Huge List Of Many Hacking Tools And PEN-TESTING Tools](http://feedproxy.google.com/~r/PentestTools/~3/srTxRSMsGsY/lazymux-huge-list-of-many-hacking-tools.html) - [Keylogger - Get Keyboard, Mouse, ScreenShot, Microphone Inputs From Target Computer And Send To Your Mail](http://feedproxy.google.com/~r/PentestTools/~3/IdBn4Nv7NV4/keylogger-get-keyboard-mouse-screenshot.html) - [Bramble - A Hacking Open Source Suite](http://feedproxy.google.com/~r/PentestTools/~3/5xMqgrR4qRI/bramble-hacking-open-source-suite.html) - [Docker for Pentest - Image With The More Used Tools To Create A Pentest Environment Easily And Quickly](http://feedproxy.google.com/~r/PentestTools/~3/DumidnUpHAk/docker-for-pentest-image-with-more-used.html) - [T14M4T - Automated Brute-Forcing Attack Tool](http://feedproxy.google.com/~r/PentestTools/~3/hPB-qQXMc7c/t14m4t-automated-brute-forcing-attack.html) - [Steganographer - Hide Files Or Data In Image Files](http://feedproxy.google.com/~r/PentestTools/~3/sVRV4AriMSU/steganographer-hide-files-or-data-in.html) - [Tsunami - A General Purpose Network Security Scanner With An Extensible Plugin System For Detecting High Severity Vulnerabilities With High Confidence](http://feedproxy.google.com/~r/PentestTools/~3/30PPuSnvyvY/tsunami-general-purpose-network.html) - [Saferwall - A Hackable Malware Sandbox For The 21St Century](http://feedproxy.google.com/~r/PentestTools/~3/wpJPhc5O1rc/saferwall-hackable-malware-sandbox-for.html) - [WiFi Passview v4.0 - An Open Source Batch Script Based WiFi Passview For Windows!](http://feedproxy.google.com/~r/PentestTools/~3/KTPlLnQrLG4/wifi-passview-v40-open-source-batch.html) - [Capsulecorp-Pentest - Vagrant VirtualBox Environment For Conducting An Internal Network Penetration Test](http://feedproxy.google.com/~r/PentestTools/~3/6FP53ToUZBI/capsulecorp-pentest-vagrant-virtualbox.html) - [Natlas - Scaling Network Scanning](http://feedproxy.google.com/~r/PentestTools/~3/h8xZRsDegjQ/natlas-scaling-network-scanning.html) - [Maskprocessor - High-Performance Word Generator With A Per-Position Configureable Charset](http://feedproxy.google.com/~r/PentestTools/~3/ghYiliC_heU/maskprocessor-high-performance-word.html) - [X64Dbg - An Open-Source X64/X32 Debugger For Windows](http://feedproxy.google.com/~r/PentestTools/~3/pqD8YWT3164/x64dbg-open-source-x64x32-debugger-for.html) - [DroneSploit - Drone Pentesting Framework Console](http://feedproxy.google.com/~r/PentestTools/~3/GTwrPeqJSaE/dronesploit-drone-pentesting-framework.html) - [Padding-Oracle-Attacker - CLI Tool And Library To Execute Padding Oracle Attacks Easily](http://feedproxy.google.com/~r/PentestTools/~3/CjK2TwC9elM/padding-oracle-attacker-cli-tool-and.html) - [Debotnet - A Tiny Portable Tool For Controlling Windows 10's Many Privacy-Related Settings And Keep Your Personal Data Private](http://feedproxy.google.com/~r/PentestTools/~3/qQU-wXw07Tg/debotnet-tiny-portable-tool-for.html) - [Santa - A Binary Whitelisting/Blacklisting System For macOS](http://feedproxy.google.com/~r/PentestTools/~3/xeoFayAyG14/santa-binary-whitelistingblacklisting.html) - [FinDOM-XSS - A Fast DOM Based XSS Vulnerability Scanner With Simplicity](http://feedproxy.google.com/~r/PentestTools/~3/crxe_ECer8M/findom-xss-fast-dom-based-xss.html) - [ParamSpider - Mining Parameters From Dark Corners Of Web Archives](http://feedproxy.google.com/~r/PentestTools/~3/iOh8uMlwUvY/paramspider-mining-parameters-from-dark.html) - [OWASP Threat Dragon - Cross-Platform Threat Modeling Application](http://feedproxy.google.com/~r/PentestTools/~3/apFjHPaqx1Y/owasp-threat-dragon-cross-platform.html) - [GIVINGSTORM - Infection Vector That Bypasses AV, IDS, And IPS](http://feedproxy.google.com/~r/PentestTools/~3/-XlFTBIl8_Y/givingstorm-infection-vector-that.html) - [Converting MBOX to Outlook Easily](http://feedproxy.google.com/~r/PentestTools/~3/zoX-hDUDFls/converting-mbox-to-outlook-easily.html) - [WordListGen - Super Simple Python Word List Generator For Fuzzing And Brute Forcing In Python](http://feedproxy.google.com/~r/PentestTools/~3/2cBn6OpVMvo/wordlistgen-super-simple-python-word.html) - [dorkScanner - A Typical Search Engine Dork Scanner Scrapes Search Engines With Dorks That You Provide In Order To Find Vulnerable URLs](http://feedproxy.google.com/~r/PentestTools/~3/5Y-zW-TzkAc/dorkscanner-typical-search-engine-dork.html) - [Harbian-Audit - Hardened Debian GNU/Linux Distro Auditing](http://feedproxy.google.com/~r/PentestTools/~3/9AgN_ClJheI/harbian-audit-hardened-debian-gnulinux.html) - [Shhgit - Find GitHub Secrets In Real Time](http://feedproxy.google.com/~r/PentestTools/~3/PHsUtb-C5vE/shhgit-find-github-secrets-in-real-time.html) - [Scant3R - Web Security Scanner](http://feedproxy.google.com/~r/PentestTools/~3/hDy2IueTv-o/scant3r-scant3r-web-security-scanner.html) - [Scant3R - ScanT3r - Web Security Scanner](http://feedproxy.google.com/~r/PentestTools/~3/hDy2IueTv-o/scant3r-scant3r-web-security-scanner.html) - [Airshare - Cross-platform Content Sharing In A Local Network](http://feedproxy.google.com/~r/PentestTools/~3/rIOrri5vOIg/airshare-cross-platform-content-sharing.html) - [Git All The Payloads! A Collection Of Web Attack Payloads](http://feedproxy.google.com/~r/PentestTools/~3/TSOPIs15EEg/git-all-payloads-collection-of-web.html) - [Faxhell - A Bind Shell Using The Fax Service And A DLL Hijack](http://feedproxy.google.com/~r/PentestTools/~3/yWhg_kJIvFw/faxhell-bind-shell-using-fax-service.html) - [Exe_To_Dll - Converts A EXE Into DLL](http://feedproxy.google.com/~r/PentestTools/~3/a0NB_1rFigw/exetodll-converts-exe-into-dll.html) - [HackingTool - ALL IN ONE Hacking Tool For Hackers](http://feedproxy.google.com/~r/PentestTools/~3/KT90Pqvqdas/hackingtool-all-in-one-hacking-tool-for.html) - [FastNetMon Community - Very Fast DDoS Analyzer With Sflow/Netflow/Mirror Support](http://feedproxy.google.com/~r/PentestTools/~3/YE8KhwOn8TQ/fastnetmon-community-very-fast-ddos.html) - [GoGhost - High Performance, Lightweight, Portable Open Source Tool For Mass SMBGhost Scan](http://feedproxy.google.com/~r/PentestTools/~3/Y7VW4N8Oz5s/goghost-high-performance-lightweight.html) - [How to Report IP Addresses](http://feedproxy.google.com/~r/PentestTools/~3/9OlqUlDTqCQ/how-to-report-ip-addresses.html) - [Server Side Template Injection Payloads](http://feedproxy.google.com/~r/PentestTools/~3/r_UyLlqp7DY/server-side-template-injection-payloads.html) - [Behave - A Monitoring Browser Extension For Pages Acting As Bad Boys](http://feedproxy.google.com/~r/PentestTools/~3/F4F6vUgcrTE/behave-monitoring-browser-extension-for.html) - [ShellGen - Reverse shell generator](http://feedproxy.google.com/~r/PentestTools/~3/v6AEksEUHto/shellgen-reverse-shell-generator.html) - [KITT-Lite - Python-Based Pentesting CLI Tool](http://feedproxy.google.com/~r/PentestTools/~3/uCMwFwjj-L4/kitt-lite-python-based-pentesting-cli.html) - [How AI and Voice Technology is Similar to a Service Dog](http://feedproxy.google.com/~r/PentestTools/~3/fvWU1yho48c/how-ai-and-voice-technology-is-similar.html) - [IIS-Raid - A Native Backdoor Module For Microsoft IIS (Internet Information Services)](http://feedproxy.google.com/~r/PentestTools/~3/2Rq9iTLImEY/iis-raid-native-backdoor-module-for.html) - [UsoDllLoader - Windows - Weaponizing Privileged File Writes With The Update Session Orchestrator Service](http://feedproxy.google.com/~r/PentestTools/~3/avQzkwqCtoU/usodllloader-windows-weaponizing.html) - [Basecrack - Best Decoder Tool For Base Encoding Schemes](http://feedproxy.google.com/~r/PentestTools/~3/aNj8sRhR4u0/basecrack-best-decoder-tool-for-base.html) - [MSFPC - MSFvenom Payload Creator](http://feedproxy.google.com/~r/PentestTools/~3/t136V2RB-ZE/msfpc-msfvenom-payload-creator.html) - [Kube-Bench - Checks Whether Kubernetes Is Deployed According To Security Best Practices As Defined In The CIS Kubernetes Benchmark](http://feedproxy.google.com/~r/PentestTools/~3/midjLJVoGvU/kube-bench-checks-whether-kubernetes-is.html) - [EvilNet - Network Attack Wifi Attack Vlan Attack Arp Attack Mac Attack Attack Revealed Etc...](http://feedproxy.google.com/~r/PentestTools/~3/RH987lnPHpY/evilnet-network-attack-wifi-attack-vlan.html) - [Xeexe - Undetectable And XOR Encrypting With Custom KEY (FUD Metasploit RAT)](http://feedproxy.google.com/~r/PentestTools/~3/NwcY_-uJ198/xeexe-undetectable-and-xor-encrypting.html) - [BSF - Botnet Simulation Framework](http://feedproxy.google.com/~r/PentestTools/~3/11FU2_1TyCM/bsf-botnet-simulation-framework.html) - [Espionage - A Network Packet And Traffic Interceptor For Linux. Spoof ARP & Wiretap A Network](http://feedproxy.google.com/~r/PentestTools/~3/5nHkLcaJGq8/espionage-network-packet-and-traffic.html) - [Screenspy - Capture user screenshots using shortcut file (Bypass SmartScreen/Defender)](http://feedproxy.google.com/~r/PentestTools/~3/spZ-O7mhFCU/screenspy-capture-user-screenshots.html) - [VBSmin - VBScript Minifier](http://feedproxy.google.com/~r/PentestTools/~3/wLnm1ZPcqNo/vbsmin-vbscript-minifier.html) - [Cloudtopolis - Cracking Hashes In The Cloud For Free](http://feedproxy.google.com/~r/PentestTools/~3/b7ZjECS9gY8/cloudtopolis-cracking-hashes-in-cloud.html) - [Spyse: All-In-One Cybersecurity Search Engine](http://feedproxy.google.com/~r/PentestTools/~3/YQZ594fHoX4/spyse-all-in-one-cybersecurity-search.html) - [Colabcat - Running Hashcat On Google Colab With Session Backup And Restore](http://feedproxy.google.com/~r/PentestTools/~3/d9pPqRQqGW8/colabcat-running-hashcat-on-google.html) - [CorsMe - Cross Origin Resource Sharing MisConfiguration Scanner](http://feedproxy.google.com/~r/PentestTools/~3/7IXHQJGvOKI/corsme-cross-origin-resource-sharing.html) - [How to Free Recover Deleted Files on Your Mac](http://feedproxy.google.com/~r/PentestTools/~3/XuyM2gKdjX8/how-to-free-recover-deleted-files-on.html) - [Sifter 7.4 - OSINT, Recon & Vulnerability Scanner](http://feedproxy.google.com/~r/PentestTools/~3/SHKZQt30BE0/sifter-74-osint-recon-vulnerability.html) - [Hmmcookies - Grab Cookies From Firefox, Chrome, Opera Using A Shortcut File (Bypass UAC)](http://feedproxy.google.com/~r/PentestTools/~3/88yQ2bVk1_w/hmmcookies-grab-cookies-from-firefox.html) - [Business Secure: How AI is Sneaking into our Restaurants](http://feedproxy.google.com/~r/PentestTools/~3/z5o9lKW7IPg/business-secure-how-ai-is-sneaking-into.html) - [InQL - A Burp Extension For GraphQL Security Testing](http://feedproxy.google.com/~r/PentestTools/~3/jALwsux_18Y/inql-burp-extension-for-graphql.html) - [TokenBreaker - JSON RSA To HMAC And None Algorithm Vulnerability POC](http://feedproxy.google.com/~r/PentestTools/~3/lHlCB6EzXjQ/tokenbreaker-json-rsa-to-hmac-and-none.html) - [SAyHello - Capturing Audio (.Wav) From Target Using A Link](http://feedproxy.google.com/~r/PentestTools/~3/82UyTUbvNiU/sayhello-capturing-audio-wav-from.html) - [Lynis 3.0.0 - Security Auditing Tool for Unix/Linux Systems](http://feedproxy.google.com/~r/PentestTools/~3/KFjjOJXfRNI/lynis-300-security-auditing-tool-for.html) - [O.G. AUTO-RECON - Enumerate A Target Based Off Of Nmap Results](http://feedproxy.google.com/~r/PentestTools/~3/-hCMuXnT1LA/og-auto-recon-enumerate-target-based.html) - [Zip Cracker - Python Script To Crack Zip Password With Dictionary Attack And Also Use Crunch As Pipeline](http://feedproxy.google.com/~r/PentestTools/~3/he_M48ychk0/zip-cracker-python-script-to-crack-zip.html) - [DroidTracker - Script To Generate An Android App To Track Location In Real Time](http://feedproxy.google.com/~r/PentestTools/~3/5fV3zbDoT-I/droidtracker-script-to-generate-android.html) - [Iox - Tool For Port Forward &Amp; Intranet Proxy](http://feedproxy.google.com/~r/PentestTools/~3/pt6JsZfXsj0/iox-tool-for-port-forward-intranet-proxy.html) - [OSS-Fuzz - Continuous Fuzzing Of Open Source Software](http://feedproxy.google.com/~r/PentestTools/~3/qU-fQITHn08/oss-fuzz-continuous-fuzzing-of-open.html) - [Vhosts-Sieve - Searching For Virtual Hosts Among Non-Resolvable Domains](http://feedproxy.google.com/~r/PentestTools/~3/25kS21dlRpk/vhosts-sieve-searching-for-virtual.html) - [Formphish - Auto Phishing Form-Based Websites](http://feedproxy.google.com/~r/PentestTools/~3/KpG4QCw9F6s/formphish-auto-phishing-form-based.html) - [SGN - Encoder Ported Into Go With Several Improvements](http://feedproxy.google.com/~r/PentestTools/~3/u-3dR_vCTk8/sgn-encoder-ported-into-go-with-several.html) - [TeaBreak - A Productivity Burp Extension Which Reminds To Take Break While You Are At Work!](http://feedproxy.google.com/~r/PentestTools/~3/mm-2HUNg6vQ/teabreak-productivity-burp-extension.html) - [Digital Signature Hijack - Binaries, PowerShell Scripts And Information About Digital Signature Hijacking](http://feedproxy.google.com/~r/PentestTools/~3/zaI4d7_isUg/digital-signature-hijack-binaries.html) - [SecretFinder - A Python Script For Find Sensitive Data (Apikeys, Accesstoken, JWT...) And Search Anything On Javascript Files](http://feedproxy.google.com/~r/PentestTools/~3/EKoAtzjYUb8/secretfinder-python-script-for-find.html) - [Fsociety - A Modular Penetration Testing Framework](http://feedproxy.google.com/~r/PentestTools/~3/na-4_fIQTq0/fsociety-modular-penetration-testing.html) - [EvilDLL - Malicious DLL (Reverse Shell) Generator For DLL Hijacking](http://feedproxy.google.com/~r/PentestTools/~3/NuLQ_WXmQm4/evildll-malicious-dll-reverse-shell.html) - [Axiom - A Dynamic Infrastructure Toolkit For Red Teamers And Bug Bounty Hunters!](http://feedproxy.google.com/~r/PentestTools/~3/kaPDeGDV9gg/axiom-dynamic-infrastructure-toolkit.html) - [Fast-Google-Dorks-Scan - Fast Google Dorks Scan](http://feedproxy.google.com/~r/PentestTools/~3/wZgjNA3IKjw/fast-google-dorks-scan-fast-google.html) - [URLCADIZ - A Simple Script To Generate A Hidden Url For Social Engineering](http://feedproxy.google.com/~r/PentestTools/~3/61lQnh22cpM/urlcadiz-simple-script-to-generate.html) - [Shodanfy.py - Get Ports, Vulnerabilities, Informations, Banners, ..Etc For Any IP With Shodan (No Apikey! No Rate-Limit!)](http://feedproxy.google.com/~r/PentestTools/~3/LCnjNKIQMSs/shodanfypy-get-ports-vulnerabilities_13.html) - [KatroLogger - KeyLogger For Linux Systems](http://feedproxy.google.com/~r/PentestTools/~3/NdSucxjr0k4/katrologger-keylogger-for-linux-systems.html) - [Attacker-Group-Predictor - Tool To Predict Attacker Groups From The Techniques And Software Used](http://feedproxy.google.com/~r/PentestTools/~3/R3G4YpSDgiU/attacker-group-predictor-tool-to.html) - [EvilPDF - Embedding Executable Files In PDF Documents](http://feedproxy.google.com/~r/PentestTools/~3/1bx5lbrEBCY/evilpdf-embedding-executable-files-in.html) - [Needle - Instant Access To You Bug Bounty Submission Dashboard On Various Platforms + Publicly Disclosed Reports + #Bugbountytip](http://feedproxy.google.com/~r/PentestTools/~3/f0edTV__OZg/needle-instant-access-to-you-bug-bounty.html) - [RMIScout - Wordlist And Bruteforce Strategies To Enumerate Java RMI Functions And Exploit RMI Parameter Unmarshalling Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/djPr0ddn3oo/rmiscout-wordlist-and-bruteforce.html) - [Atlas - Quick SQLMap Tamper Suggester](http://feedproxy.google.com/~r/PentestTools/~3/bOxrvjP0QcY/atlas-quick-sqlmap-tamper-suggester.html) - [Stegcloak - Hide Secrets With Invisible Characters In Plain Text Securely Using Passwords](http://feedproxy.google.com/~r/PentestTools/~3/wwD1qispYZ4/stegcloak-hide-secrets-with-invisible.html) - [BabyShark - Basic C2 Server](http://feedproxy.google.com/~r/PentestTools/~3/6PhUfCftQpg/babyshark-basic-c2-server.html) - [URLCrazy - Generate And Test Domain Typos And Variations To Detect And Perform Typo Squatting, URL Hijacking, Phishing, And Corporate Espionage](http://feedproxy.google.com/~r/PentestTools/~3/pCTRDE2dl1M/urlcrazy-generate-and-test-domain-typos.html) - [Impost3r - A Linux Password Thief](http://feedproxy.google.com/~r/PentestTools/~3/wfqDp6nkSic/impost3r-linux-password-thief.html) - [Tangalanga - The Zoom Conference Scanner Hacking Tool](http://feedproxy.google.com/~r/PentestTools/~3/TkUXwSH5HIU/tangalanga-zoom-conference-scanner.html) - [Spyeye - Script To Generate Win32 .Exe File To Take Screenshots](http://feedproxy.google.com/~r/PentestTools/~3/kjq8wmtqsd8/spyeye-script-to-generate-win32-exe.html) - [Words Scraper - Selenium Based Web Scraper To Generate Passwords List](http://feedproxy.google.com/~r/PentestTools/~3/KZxrwTrIDqE/words-scraper-selenium-based-web.html) - [JSshell - A JavaScript Reverse Shell For Exploiting XSS Remotely Or Finding Blind XSS, Working With Both Unix And Windows OS](http://feedproxy.google.com/~r/PentestTools/~3/FAbak0SrepU/jsshell-javascript-reverse-shell-for.html) - [Astsu - A Network Scanner Tool](http://feedproxy.google.com/~r/PentestTools/~3/UpyJkEUTzUA/astsu-network-scanner-tool.html) - [Git-Scanner - A Tool For Bug Hunting Or Pentesting For Targeting Websites That Have Open .git Repositories Available In Public](http://feedproxy.google.com/~r/PentestTools/~3/gsKQWERd4E0/git-scanner-tool-for-bug-hunting-or.html) - [Recox - Master Script For Web Reconnaissance](http://feedproxy.google.com/~r/PentestTools/~3/MrVXS9svia0/recox-master-script-for-web.html) - [Jshole - A JavaScript Components Vulnrability Scanner, Based On RetireJS](http://feedproxy.google.com/~r/PentestTools/~3/hpITytQDgjw/jshole-javascript-components.html) - [GitMonitor - A Github Scanning System To Look For Leaked Sensitive Information Based On Rules](http://feedproxy.google.com/~r/PentestTools/~3/icGYa6lk_F4/gitmonitor-github-scanning-system-to.html) - [Eviloffice - Inject Macro And DDE Code Into Excel And Word Documents (Reverse Shell)](http://feedproxy.google.com/~r/PentestTools/~3/mWZy5zAqnCY/eviloffice-inject-macro-and-dde-code.html) - [Ligolo - Reverse Tunneling Made Easy For Pentesters, By Pentesters](http://feedproxy.google.com/~r/PentestTools/~3/khATnePM3V8/ligolo-reverse-tunneling-made-easy-for.html) - [Inshackle - Instagram Hacks: Track Unfollowers, Increase Your Followers, Download Stories, Etc](http://feedproxy.google.com/~r/PentestTools/~3/hUu-VErDuek/inshackle-instagram-hacks-track.html) - [GhostShell - Malware Indetectable, With AV Bypass Techniques, Anti-Disassembly, And More](http://feedproxy.google.com/~r/PentestTools/~3/TVJ580qtwsg/ghostshell-malware-indetectable-with-av.html) - [Forerunner - Fast And Extensible Network Scanning Library Featuring Multithreading, Ping Probing, And Scan Fetchers](http://feedproxy.google.com/~r/PentestTools/~3/v5uHd2kZOJE/forerunner-fast-and-extensible-network.html) - [Enumy - Linux Post Exploitation Privilege Escalation Enumeration](http://feedproxy.google.com/~r/PentestTools/~3/IOJvTQFExEU/enumy-linux-post-exploitation-privilege.html) - [Bing-Ip2Hosts - Bingip2Hosts Is A Bing.com Web Scraper That Discovers Websites By IP Address](http://feedproxy.google.com/~r/PentestTools/~3/8Po879yXQZ8/bing-ip2hosts-bingip2hosts-is-bingcom.html) - [Vault - A Tool For Secrets Management, Encryption As A Service, And Privileged Access Management](http://feedproxy.google.com/~r/PentestTools/~3/PYNaKvSoc9s/vault-tool-for-secrets-management.html) - [ADCollector - A Lightweight Tool To Quickly Extract Valuable Information From The Active Directory Environment For Both Attacking And Defending](http://feedproxy.google.com/~r/PentestTools/~3/9SedNJtUU74/adcollector-lightweight-tool-to-quickly.html) - [ANDRAX v5R NH-Killer - Penetration Testing on Android](http://feedproxy.google.com/~r/PentestTools/~3/hIKv1ToZEMQ/andrax-v5r-nh-killer-penetration.html) - [DroidFiles - Get Files From Android Directories](http://feedproxy.google.com/~r/PentestTools/~3/5OCoXRwNFdM/droidfiles-get-files-from-android.html) - [Purify - All-in-one Tool For Managing Vulnerability Reports From AppSec Pipelines](http://feedproxy.google.com/~r/PentestTools/~3/nYUo-myE5M8/purify-all-in-one-tool-for-managing.html) - [MemoryMapper - Lightweight Library Which Allows The Ability To Map Both Native And Managed Assemblies Into Memory](http://feedproxy.google.com/~r/PentestTools/~3/f8hlG8ETdCA/memorymapper-lightweight-library-which.html) - [Project iKy v2.6.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/oiunjpsRvSc/project-iky-v260-tool-that-collects.html) - [RepoPeek - A Python Script To Get Details About A Repository Without Cloning It](http://feedproxy.google.com/~r/PentestTools/~3/yoiCVdZZbCw/repopeek-python-script-to-get-details.html) - [Pivotnacci - A Tool To Make Socks Connections Through HTTP Agents](http://feedproxy.google.com/~r/PentestTools/~3/yHERSP69CGA/pivotnacci-tool-to-make-socks.html) - [OhMyQR - Hijack Services That Relies On QR Code Authentication](http://feedproxy.google.com/~r/PentestTools/~3/ZJqecIyqC_E/ohmyqr-hijack-services-that-relies-on.html) - [FinalRecon - The Last Web Recon Tool You'll Need](http://feedproxy.google.com/~r/PentestTools/~3/01eMqUtKuTU/finalrecon-last-web-recon-tool-youll.html) - [Jaeles v0.9 - The Swiss Army Knife For Automated Web Application Testing](http://feedproxy.google.com/~r/PentestTools/~3/vYnwGCa7How/jaeles-v09-swiss-army-knife-for.html) - [Game-based learning platform provides full immersion into cybersecurity](http://feedproxy.google.com/~r/PentestTools/~3/K0-gmG9JMJM/game-based-learning-platform-provides.html) - [AutoRDPwn v5.1 - The Shadow Attack Framework](http://feedproxy.google.com/~r/PentestTools/~3/KB6ZFOYRG30/autordpwn-v51-shadow-attack-framework.html) - [EvilApp - Phishing Attack Using An Android App To Grab Session Cookies For Any Website (ByPass 2FA)](http://feedproxy.google.com/~r/PentestTools/~3/4q8G1KztMgY/evilapp-phishing-attack-using-android.html) - [S3BucketList - Firefox Plugin The Lists Amazon S3 Buckets Found In Requests](http://feedproxy.google.com/~r/PentestTools/~3/RcIQULiPgSw/s3bucketlist-firefox-plugin-lists.html) - [Locator - Geolocator, Ip Tracker, Device Info By URL (Serveo And Ngrok)](http://feedproxy.google.com/~r/PentestTools/~3/Y1QTUkss38U/locator-geolocator-ip-tracker-device.html) - [Guardedbox - Online Client-Side Manager For Secure Storage And Secrets Sharing](http://feedproxy.google.com/~r/PentestTools/~3/6HfBPqV4dkE/guardedbox-online-client-side-manager.html) - [Faraday v3.11 - Collaborative Penetration Test and Vulnerability Management Platform](http://feedproxy.google.com/~r/PentestTools/~3/AYy0Ih0d-z0/faraday-v311-collaborative-penetration.html) - [Minimalistic-offensive-security-tools - A Repository Of Tools For Pentesting Of Restricted And Isolated Environments](http://feedproxy.google.com/~r/PentestTools/~3/dc_wqDPZa74/minimalistic-offensive-security-tools.html) - [Carina - Webshell, Virtual Private Server (VPS) And cPanel Database](http://feedproxy.google.com/~r/PentestTools/~3/XTsZSdEvD1s/carina-webshell-virtual-private-server.html) - [Nishang - Offensive PowerShell For Red Team, Penetration Testing And Offensive Security](http://feedproxy.google.com/~r/PentestTools/~3/dbQKR-HMitE/nishang-offensive-powershell-for-red.html) - [Web Hacker's Weapons - A Collection Of Cool Tools Used By Web Hackers](http://feedproxy.google.com/~r/PentestTools/~3/gtBsb59j5_g/web-hackers-weapons-collection-of-cool.html) - [Spray - A Password Spraying Tool For Active Directory Credentials By Jacob Wilkin(Greenwolf)](http://feedproxy.google.com/~r/PentestTools/~3/98z31AaFB7k/spray-password-spraying-tool-for-active.html) - [Self-XSS - Self-XSS Attack Using Bit.Ly To Grab Cookies Tricking Users Into Running Malicious Code](http://feedproxy.google.com/~r/PentestTools/~3/b-yEqKBcYXo/self-xss-self-xss-attack-using-bitly-to.html) - [Open Sesame - A Tool Which Runs To Display Random Publicly Disclosed Hackerone Reports When Bored](http://feedproxy.google.com/~r/PentestTools/~3/W74U39At1Po/open-sesame-tool-which-runs-to-display.html) - [BlackDir-Framework - Web Application Vulnerability Scanner](http://feedproxy.google.com/~r/PentestTools/~3/KdhQYNLLv0w/blackdir-framework-web-application.html) - [Sharingan - Offensive Security Recon Tool](http://feedproxy.google.com/~r/PentestTools/~3/XMliUAHtHBE/sharingan-offensive-security-recon-tool.html) - [BADlnk - Reverse Shell In Shortcut File (.lnk)](http://feedproxy.google.com/~r/PentestTools/~3/PTLwZDrbwK4/badlnk-reverse-shell-in-shortcut-file.html) - [ParamKit - A Small Library Helping To Parse Commandline Parameters](http://feedproxy.google.com/~r/PentestTools/~3/nfXwCLYC4dI/paramkit-small-library-helping-to-parse.html) - [Hidden-Cry - Windows Crypter/Decrypter Generator With AES 256 Bits Key](http://feedproxy.google.com/~r/PentestTools/~3/Bvf7CnAZqNI/hidden-cry-windows-crypterdecrypter.html) - [Open-Sesame - A Python Tool Which Runs To Display Random Publicly Disclosed Hackerone Reports When Bored](http://feedproxy.google.com/~r/PentestTools/~3/qTuvqxXCKdM/open-sesame-python-tool-which-runs-to.html) - [Evilreg - Reverse Shell Using Windows Registry Files (.Reg)](http://feedproxy.google.com/~r/PentestTools/~3/kjj-ANfbYac/evilreg-reverse-shell-using-windows.html) - [URLBrute - Tool To Brute Website Sub-Domains And Dirs](http://feedproxy.google.com/~r/PentestTools/~3/WwP3ztWD7kI/urlbrute-tool-to-brute-website-sub.html) - [Getdroid - FUD Android Payload And Listener](http://feedproxy.google.com/~r/PentestTools/~3/pG_U-GCs6ws/getdroid-fud-android-payload-and.html) - [DiscordRAT - Discord Remote Administration Tool Fully Written In Python](http://feedproxy.google.com/~r/PentestTools/~3/4haZwvevBIk/discordrat-discord-remote.html) - [Lockphish - A Tool For Phishing Attacks On The Lock Screen, Designed To Grab Windows Credentials, Android PIN And iPhone Passcode](http://feedproxy.google.com/~r/PentestTools/~3/Xl9LNG1vR24/lockphish-tool-for-phishing-attacks-on.html) - [DalFox (Finder Of XSS) - Parameter Analysis And XSS Scanning Tool Based On Golang](http://feedproxy.google.com/~r/PentestTools/~3/suV7iLK-t78/dalfox-finder-of-xss-parameter-analysis.html) - [Saycheese - Grab Target'S Webcam Shots By Link](http://feedproxy.google.com/~r/PentestTools/~3/62OGo_tCtUY/saycheese-grab-targets-webcam-shots-by.html) - [Kaiten - A Undetectable Payload Generation](http://feedproxy.google.com/~r/PentestTools/~3/BjGRnyQ2Sy0/kaiten-undetectable-payload-generation.html) - [Kali Linux 2020.2 Release - Penetration Testing and Ethical Hacking Linux Distribution](http://feedproxy.google.com/~r/PentestTools/~3/_hPqKsYoWJU/kali-linux-20202-release-penetration.html) - [Clipboardme - Grab And Inject Clipboard Content By Link](http://feedproxy.google.com/~r/PentestTools/~3/lo_tZ_nyiFw/clipboardme-grab-and-inject-clipboard.html) - [Threadtear - Multifunctional Java Deobfuscation Tool Suite](http://feedproxy.google.com/~r/PentestTools/~3/ymCn5kU6UM8/threadtear-multifunctional-java.html) - [Wifipumpkin3 - Powerful Framework For Rogue Access Point Attack](http://feedproxy.google.com/~r/PentestTools/~3/twbfRGBer8M/wifipumpkin3-powerful-framework-for.html) - [Catchyou - FUD Win32 Msfvenom Payload Generator](http://feedproxy.google.com/~r/PentestTools/~3/7DwqBK8zFmw/catchyou-fud-win32-msfvenom-payload.html) - [PayloadsAllTheThings - A List Of Useful Payloads And Bypass For Web Application Security And Pentest/CTF](http://feedproxy.google.com/~r/PentestTools/~3/esWjScCVCXc/payloadsallthethings-list-of-useful.html) - [Exegol - Exegol Is A Kali Light Base With A Few Useful Additional Tools And Some Basic Configuration](http://feedproxy.google.com/~r/PentestTools/~3/Lakc9UAJUp0/exegol-exegol-is-kali-light-base-with.html) - [GDBFrontend - An Easy, Flexible And Extensionable GUI Debugger](http://feedproxy.google.com/~r/PentestTools/~3/ZMckgKsM1Mw/gdbfrontend-easy-flexible-and.html) - [Shellerator - Simple CLI Tool For The Generation Of Bind And Reverse Shells In Multiple Languages](http://feedproxy.google.com/~r/PentestTools/~3/Yxf6odBCrlI/shellerator-simple-cli-tool-for.html) - [Powerob - An On-The-Fly Powershell Script Obfuscator Meant For Red Team Engagements](http://feedproxy.google.com/~r/PentestTools/~3/wRC__6cdnU4/powerob-on-fly-powershell-script.html) - [How to Set Up a VPN on Kodi in 2 Minutes or Less](http://feedproxy.google.com/~r/PentestTools/~3/Bmh0QLdLiXs/how-to-set-up-vpn-on-kodi-in-2-minutes.html) - [PowerSploit - A PowerShell Post-Exploitation Framework](http://feedproxy.google.com/~r/PentestTools/~3/I7iN_ojAPg4/powersploit-powershell-post.html) - [HiveJack - This Tool Can Be Used During Internal Penetration Testing To Dump Windows Credentials From An Already-Compromised Host](http://feedproxy.google.com/~r/PentestTools/~3/Mkb94nwUrlY/hivejack-this-tool-can-be-used-during.html) - [Nexphisher - Advanced Phishing Tool For Linux & Termux](http://feedproxy.google.com/~r/PentestTools/~3/8La5H1VOOps/nexphisher-advanced-phishing-tool-for.html) - [TorghostNG - Make All Your Internet Traffic Anonymized Through Tor Network](http://feedproxy.google.com/~r/PentestTools/~3/IXpdmsWonmk/torghostng-make-all-your-internet.html) - [Sshprank - A Fast SSH Mass-Scanner, Login Cracker And Banner Grabber Tool Using The Python-Masscan Module](http://feedproxy.google.com/~r/PentestTools/~3/pjY7fJ0VWak/sshprank-fast-ssh-mass-scanner-login.html) - [Generator-Burp-Extension - Everything You Need About Burp Extension Generation](http://feedproxy.google.com/~r/PentestTools/~3/4Wp_fXhT3WY/generator-burp-extension-everything-you.html) - [Parsec - Secure Cloud Framework](http://feedproxy.google.com/~r/PentestTools/~3/QWMGe7bsyQ0/parsec-secure-cloud-framework.html) - [Invoker - Penetration Testing Utility](http://feedproxy.google.com/~r/PentestTools/~3/HbkkC1vYU9g/invoker-penetration-testing-utility.html) - [Authelia - The Single Sign-On Multi-Factor Portal For Web Apps](http://feedproxy.google.com/~r/PentestTools/~3/aMqf8CRSScQ/authelia-single-sign-on-multi-factor.html) - [OSSEM - A Tool To Assess Data Quality](http://feedproxy.google.com/~r/PentestTools/~3/kg6kiSGHGAM/ossem-tool-to-assess-data-quality.html) - [Klar - Integration Of Clair And Docker Registry](http://feedproxy.google.com/~r/PentestTools/~3/KZqyQRzH2hU/klar-integration-of-clair-and-docker.html) - [Powershell-Reverse-Tcp - PowerShell Script For Connecting To A Remote Host.](http://feedproxy.google.com/~r/PentestTools/~3/syBVnMzraTM/powershell-reverse-tcp-powershell.html) - [INTERCEPT - Policy As Code Static Analysis Auditing](http://feedproxy.google.com/~r/PentestTools/~3/fxwU1SEJOq4/intercept-policy-as-code-static.html) - [Thoron Framework - Tool To Generate Simple Payloads To Provide Linux TCP Attack](http://feedproxy.google.com/~r/PentestTools/~3/YoPMO_OMeME/thoron-framework-tool-to-generate.html) - [SkyWrapper - Tool That Helps To Discover Suspicious Creation Forms And Uses Of Temporary Tokens In AWS](http://feedproxy.google.com/~r/PentestTools/~3/w0otGurmXTY/skywrapper-tool-that-helps-to-discover.html) - [Runtime Mobile Security (RMS) - A Powerful Web Interface That Helps You To Manipulate Android Java Classes And Methods At Runtime](http://feedproxy.google.com/~r/PentestTools/~3/5no21xQboKw/runtime-mobile-security-rms-powerful.html) - [Elemental - An MITRE ATTACK Threat Library](http://feedproxy.google.com/~r/PentestTools/~3/dQ7RRz4RW7w/elemental-mitre-attack-threat-library.html) - [ROADtools - The Azure AD Exploration Framework](http://feedproxy.google.com/~r/PentestTools/~3/KZVHzFc3-rQ/roadtools-azure-ad-exploration-framework.html) - [Terrier - A Image And Container Analysis Tool To Identify And Verify The Presence Of Specific Files According To Their Hashes](http://feedproxy.google.com/~r/PentestTools/~3/nlHfJwbCvx8/terrier-image-and-container-analysis.html) - [wxHexEditor - Hex Editor / Disk Editor for Huge Files or Devices on Linux, Windows and MacOSX](http://feedproxy.google.com/~r/PentestTools/~3/eFlToOdCc4E/wxhexeditor-hex-editor-disk-editor-for.html) - [DeathRansom - A Ransomware Developed In Python, With Bypass Technics, For Educational Purposes](http://feedproxy.google.com/~r/PentestTools/~3/M2hXB0YTcjM/deathransom-ransomware-developed-in.html) - [Nuclei - Nuclei Is A Fast Tool For Configurable Targeted Scanning Based On Templates Offering Massive Extensibility And Ease Of Use](http://feedproxy.google.com/~r/PentestTools/~3/SXw3ZY4bg0w/nuclei-nuclei-is-fast-tool-for.html) - [Print-My-Shell - Tool To Automate The Process Of Generating Various Reverse Shells](http://feedproxy.google.com/~r/PentestTools/~3/XSgk5ddXB8E/print-my-shell-tool-to-automate-process.html) - [S3Reverse - The Format Of Various S3 Buckets Is Convert In One Format](http://feedproxy.google.com/~r/PentestTools/~3/YFQI-e9mVbg/s3reverse-format-of-various-s3-buckets_26.html) - [Pwned - Simple CLI Script To Check If You Have A Password That Has Been Compromised In A Data Breach](http://feedproxy.google.com/~r/PentestTools/~3/HrSDHu1CbE0/pwned-simple-cli-script-to-check-if-you.html) - [Project iKy v2.5.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/7hKPbEXH2Wo/project-iky-v250-tool-that-collects.html) - [Should-I-Trust - OSINT Tool To Evaluate The Trustworthiness Of A Company](http://feedproxy.google.com/~r/PentestTools/~3/cOG7bf-y3tc/should-i-trust-osint-tool-to-evaluate.html) - [Wotop - Web On Top Of Any Protocol](http://feedproxy.google.com/~r/PentestTools/~3/OQsDTFx0gQ4/wotop-web-on-top-of-any-protocol.html) - [Firebase-Extractor - A Tool Written In Python For Scraping Firebase Data](http://feedproxy.google.com/~r/PentestTools/~3/Ce6aeVUESxQ/firebase-extractor-tool-written-in.html) - [Lulzbuster - A Very Fast And Smart Web Directory And File Enumeration Tool Written In C](http://feedproxy.google.com/~r/PentestTools/~3/-V1NlPemJo4/lulzbuster-very-fast-and-smart-web.html) - [Impulse - Impulse Denial-of-service ToolKit](http://feedproxy.google.com/~r/PentestTools/~3/JKv4MZkaeVc/impulse-impulse-denial-of-service.html) - [Nullscan - A Modular Framework Designed To Chain And Automate Security Tests](http://feedproxy.google.com/~r/PentestTools/~3/t0dl3Bg2Thw/nullscan-modular-framework-designed-to.html) - [githubFind3r - Fast Command Line Repo/User/Commit Search Tool](http://feedproxy.google.com/~r/PentestTools/~3/lF-_ttdZJ7o/githubfind3r-fast-command-line.html) - [Httpgrep - Scans HTTP Servers To Find Given Strings In URIs](http://feedproxy.google.com/~r/PentestTools/~3/2Ls5ctqJENo/httpgrep-scans-http-servers-to-find.html) - [Adamantium-Thief - Decrypt Chromium Based Browsers Passwords, Cookies, Credit Cards, History, Bookmarks](http://feedproxy.google.com/~r/PentestTools/~3/bJRNo4eIwn4/adamantium-thief-decrypt-chromium-based.html) - [Lk Scraper - An Fully Configurable Linkedin Scrape (Scrape Anything Within Linkedin)](http://feedproxy.google.com/~r/PentestTools/~3/qUnpnFTGG9s/lk-scraper-fully-configurable-linkedin.html) - [Flux-Keylogger - Modern Javascript Keylogger With Web Panel](http://feedproxy.google.com/~r/PentestTools/~3/BzIhmIH2xro/flux-keylogger-modern-javascript.html) - [Vulnx v2.0 - An Intelligent Bot Auto Shell Injector That Detect Vulnerabilities In Multiple Types Of CMS (Wordpress , Joomla , Drupal , Prestashop ...)](http://feedproxy.google.com/~r/PentestTools/~3/5dg9OsMFi5U/vulnx-v20-intelligent-bot-auto-shell.html) - [Vulnx v2.0 - An Intelligent Bot Auto Shell Injector That Detect Vulnerabilities In Multiple Types Of CMS {(Wordpress , Joomla , Drupal , Prestashop ...)](http://feedproxy.google.com/~r/PentestTools/~3/5dg9OsMFi5U/vulnx-v20-intelligent-bot-auto-shell.html) - [goBox - GO Sandbox To Run Untrusted Code](http://feedproxy.google.com/~r/PentestTools/~3/jDUHHp_sSOg/gobox-go-sandbox-to-run-untrusted-code.html) - [RS256-2-HS256 - JWT Attack To Change The Algorithm RS256 To HS256](http://feedproxy.google.com/~r/PentestTools/~3/YEXpmJ8hs38/rs256-2-hs256-jwt-attack-to-change.html) - [PEASS - Privilege Escalation Awesome Scripts SUITE](http://feedproxy.google.com/~r/PentestTools/~3/o1Y7kANaUGo/peass-privilege-escalation-awesome.html) - [Pwndrop - Self-Deployable File Hosting Service For Red Teamers, Allowing To Easily Upload And Share Payloads Over HTTP And WebDAV](http://feedproxy.google.com/~r/PentestTools/~3/GnbqJvaDap4/pwndrop-self-deployable-file-hosting.html) - [DNSProbe - A Tool Built On Top Of Retryabledns That Allows You To Perform Multiple DNS Queries Of Your Choice With A List Of User Supplied Resolvers](http://feedproxy.google.com/~r/PentestTools/~3/8POWQ5vE9V4/dnsprobe-tool-built-on-top-of.html) - [Crescendo - A Swift Based, Real Time Event Viewer For macOS - It Utilizes Apple's Endpoint Security Framework](http://feedproxy.google.com/~r/PentestTools/~3/HKuOWu-ZStg/crescendo-swift-based-real-time-event.html) - [Burp Exporter - A Burp Suite Extension To Copy A Request To The Clipboard As Multiple Programming Languages Functions](http://feedproxy.google.com/~r/PentestTools/~3/V-2SxDRDWZQ/burp-exporter-burp-suite-extension-to.html) - [crauEmu - An uEmu Extension For Developing And Analyzing Payloads For Code-Reuse Attacks](http://feedproxy.google.com/~r/PentestTools/~3/hGO5Jrd9Rg8/crauemu-uemu-extension-for-developing.html) - [Htbenum - A Linux Enumeration Script For Hack The Box](http://feedproxy.google.com/~r/PentestTools/~3/YzzKcxzuuXo/htbenum-linux-enumeration-script-for.html) - [Domained - Multi Tool Subdomain Enumeration](http://feedproxy.google.com/~r/PentestTools/~3/mYk06TN1dls/domained-multi-tool-subdomain.html) - [Lollipopz - Data Exfiltration Utility For Testing Detection Capabilities](http://feedproxy.google.com/~r/PentestTools/~3/q07ZQcB3JQo/lollipopz-data-exfiltration-utility-for.html) - [Sherloq - An Open-Source Digital Image Forensic Toolset](http://feedproxy.google.com/~r/PentestTools/~3/QURuyiMpcjo/sherloq-open-source-digital-image.html) - [Inhale - A Malware Analysis And Classification Tool](http://feedproxy.google.com/~r/PentestTools/~3/pe8iJ88NKQg/inhale-malware-analysis-and.html) - [Privacy Badger - A Browser Extension That Automatically Learns To Block Invisible Trackers](http://feedproxy.google.com/~r/PentestTools/~3/3CIh1vQt_rQ/privacy-badger-browser-extension-that.html) - [Audix - A PowerShell Tool To Quickly Configure The Windows Event Audit Policies For Security Monitoring](http://feedproxy.google.com/~r/PentestTools/~3/BSvJN-c69AY/audix-powershell-tool-to-quickly.html) - [Serverless Prey - Serverless Functions For Establishing Reverse Shells To Lambda, Azure Functions, And Google Cloud Functions](http://feedproxy.google.com/~r/PentestTools/~3/CZchtPedoKI/serverless-prey-serverless-functions.html) - [Lunar - A Lightweight Native DLL Mapping Library That Supports Mapping Directly From Memory](http://feedproxy.google.com/~r/PentestTools/~3/Bkcp5vSarTE/lunar-lightweight-native-dll-mapping.html) - [Ps-Tools - An Advanced Process Monitoring Toolkit For Offensive Operations](http://feedproxy.google.com/~r/PentestTools/~3/BLIhwDuHHX8/ps-tools-advanced-process-monitoring.html) - [Eavesarp - Analyze ARP Requests To Identify Intercommunicating Hosts And Stale Network Address Configurations (SNACs)](http://feedproxy.google.com/~r/PentestTools/~3/9mELsauoKH4/eavesarp-analyze-arp-requests-to.html) - [Richkit - Domain Enrichment Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/0PGfoA_aLmw/richkit-domain-enrichment-toolkit.html) - [Chromepass - Hacking Chrome Saved Passwords](http://feedproxy.google.com/~r/PentestTools/~3/LHrkQaMkLJk/chromepass-hacking-chrome-saved.html) - [Tentacle - A POC Vulnerability Verification And Exploit Framework](http://feedproxy.google.com/~r/PentestTools/~3/ayqC3hnuHCA/tentacle-poc-vulnerability-verification.html) - [Tails 4.5 - Live System to Preserve Your Privacy and Anonymity](http://feedproxy.google.com/~r/PentestTools/~3/qwMQ7S8e_2g/tails-45-live-system-to-preserve-your.html) - [MSOLSpray - A Password Spraying Tool For Microsoft Online Accounts (Azure/O365)](http://feedproxy.google.com/~r/PentestTools/~3/T0v7baCeJh8/msolspray-password-spraying-tool-for.html) - [Git-Hound v1.1 - GitHound Pinpoints Exposed API Keys On GitHub Using Pattern Matching, Commit History Searching, And A Unique Result Scoring System](http://feedproxy.google.com/~r/PentestTools/~3/YKTyVyUxJSo/git-hound-v11-githound-pinpoints.html) - [DNSteal v2.0 - DNS Exfiltration Tool For Stealthily Sending Files Over DNS Requests](http://feedproxy.google.com/~r/PentestTools/~3/w4fv5UMmpBI/dnsteal-v20-dns-exfiltration-tool-for.html) - [OSSEM - Open Source Security Events Metadata](http://feedproxy.google.com/~r/PentestTools/~3/QrknFUz5uGM/ossem-open-source-security-events.html) - [Angrgdb - Use Angr Inside GDB - Create An Angr State From The Current Debugger State](http://feedproxy.google.com/~r/PentestTools/~3/LZoLEhOI0SI/angrgdb-use-angr-inside-gdb-create-angr.html) - [SSHPry v2.0 - Spy and Control os SSH Connected client's TTY](http://feedproxy.google.com/~r/PentestTools/~3/jxn3qFteuOw/sshpry-v20-spy-and-control-os-ssh.html) - [HikPwn - A Simple Scanner For Hikvision Devices](http://feedproxy.google.com/~r/PentestTools/~3/4bho1oxJ4F8/hikpwn-simple-scanner-for-hikvision.html) - [Sandcastle - A Python Script For AWS S3 Bucket Enumeration](http://feedproxy.google.com/~r/PentestTools/~3/e2xzlmFDtaE/sandcastle-python-script-for-aws-s3.html) - [Tweetshell - Multi-thread Twitter BruteForcer In Shell Script](http://feedproxy.google.com/~r/PentestTools/~3/vWpgJ70dlTM/tweetshell-multi-thread-twitter.html) - [Jackdaw - Tool To Collect All Information In Your Domain And Show You Nice Graphs](http://feedproxy.google.com/~r/PentestTools/~3/KWhYPUcsRW4/jackdaw-tool-to-collect-all-information.html) - [Frida API Fuzzer - This Experimetal Fuzzer Is Meant To Be Used For API In-Memory Fuzzing](http://feedproxy.google.com/~r/PentestTools/~3/gjVqcWYaBMY/frida-api-fuzzer-this-experimetal.html) - [DigiTrack - Attacks For $5 Or Less Using Arduino](http://feedproxy.google.com/~r/PentestTools/~3/-JaQuxrhKWc/digitrack-attacks-for-5-or-less-using.html) - [FProbe - Take A List Of Domains/Subdomains And Probe For Working HTTP/HTTPS Server](http://feedproxy.google.com/~r/PentestTools/~3/8DlFDN6KO7g/fprobe-take-list-of-domainssubdomains.html) - [MSSQLi-DUET - SQL Injection Script For MSSQL That Extracts Domain Users From An Active Directory Environment Based On RID Bruteforcing](http://feedproxy.google.com/~r/PentestTools/~3/UPnTPlqbDuc/mssqli-duet-sql-injection-script-for.html) - [Awspx - A Graph-Based Tool For Visualizing Effective Access And Resource Relationships In AWS Environments](http://feedproxy.google.com/~r/PentestTools/~3/S_VHOWSjPYM/awspx-graph-based-tool-for-visualizing.html) - [Pulsar - Network Footprint Scanner Platform - Discover Domains And Run Your Custom Checks Periodically](http://feedproxy.google.com/~r/PentestTools/~3/MIw_sk1zvbY/pulsar-network-footprint-scanner.html) - [CVE-2020-0796 - CVE-2020-0796 Pre-Auth POC](http://feedproxy.google.com/~r/PentestTools/~3/TThtUSdWVSs/cve-2020-0796-cve-2020-0796-pre-auth-poc.html) - [CVE-2020-0796 - Windows SMBv3 LPE Exploit #SMBGhost](http://feedproxy.google.com/~r/PentestTools/~3/6jIOCcTQj9U/cve-2020-0796-windows-smbv3-lpe-exploit.html) - [R00Kie-Kr00Kie - PoC Exploit For The CVE-2019-15126 Kr00K Vulnerability](http://feedproxy.google.com/~r/PentestTools/~3/3H4HKWEhCXA/r00kie-kr00kie-poc-exploit-for-cve-2019.html) - [One-Lin3r v2.1 - Gives You One-Liners That Aids In Penetration Testing Operations, Privilege Escalation And More](http://feedproxy.google.com/~r/PentestTools/~3/3sjtI9GtF0c/one-lin3r-v21-gives-you-one-liners-that.html) - [Project iKy v2.4.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/gp-sptDrrHc/project-iky-v240-tool-that-collects.html) - [Project iKy v2.4.0 - Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface](http://feedproxy.google.com/~r/PentestTools/~3/gp-sptDrrHc/project-iky-v240-tool-that-collects.html) - [SauronEye - Search Tool To Find Specific Files Containing Specific Words, I.E. Files Containing Passwords](http://feedproxy.google.com/~r/PentestTools/~3/MdIzMpFQSvE/sauroneye-search-tool-to-find-specific.html) - [Webkiller v2.0 - Tool Information Gathering](http://feedproxy.google.com/~r/PentestTools/~3/Jkmh9Pbq9ho/webkiller-v20-tool-information-gathering.html) - [InQL Scanner - A Burp Extension For GraphQL Security Testing](http://feedproxy.google.com/~r/PentestTools/~3/NVOs0V16bM8/inql-scanner-burp-extension-for-graphql.html) - [Mssqlproxy - A Toolkit Aimed To Perform Lateral Movement In Restricted Environments Through A Compromised Microsoft SQL Server Via Socket Reuse](http://feedproxy.google.com/~r/PentestTools/~3/-Yiqjt_MvUo/mssqlproxy-toolkit-aimed-to-perform.html) - [ProjectOpal - Stealth Post-Exploitation Framework For Wordpress](http://feedproxy.google.com/~r/PentestTools/~3/bX1FcSaxu5Q/projectopal-stealth-post-exploitation.html) - [ConEmu - Customizable Windows Terminal With Tabs, Splits, Quake-Style, Hotkeys And More](http://feedproxy.google.com/~r/PentestTools/~3/ta1XP283qPo/conemu-customizable-windows-terminal.html) - [Tinfoil Chat - Onion-routed, Endpoint Secure Messaging System](http://feedproxy.google.com/~r/PentestTools/~3/z86do2O4OzU/tinfoil-chat-onion-routed-endpoint.html) - [Tinfoil Chat - Onion-routed, Endpoint Secure Messaging System](http://feedproxy.google.com/~r/PentestTools/~3/z86do2O4OzU/tinfoil-chat-onion-routed-endpoint.html) - [Ninja - Open Source C2 Server Created For Stealth Red Team Operations](http://feedproxy.google.com/~r/PentestTools/~3/MWgMhafBiNM/ninja-open-source-c2-server-created-for.html) - [RapidPayload - Metasploit Payload Generator](http://feedproxy.google.com/~r/PentestTools/~3/W8bo7CzkDwc/rapidpayload-metasploit-payload.html) - [Katana - A Python Tool For Google Hacking](http://feedproxy.google.com/~r/PentestTools/~3/tCnTDF-uHjw/katana-python-tool-for-google-hacking.html) - [Envizon v3.0 - Network Visualization And Vulnerability Management/Reporting](http://feedproxy.google.com/~r/PentestTools/~3/X41oXKd4gkU/envizon-v30-network-visualization-and.html) - [Zphisher - Automated Phishing Tool](http://feedproxy.google.com/~r/PentestTools/~3/j5xeLa9VQ88/zphisher-automated-phishing-tool.html) - [XSS-LOADER - XSS Payload Generator / XSS Scanner / XSS Dork Finder](http://feedproxy.google.com/~r/PentestTools/~3/4Q8ciQPdm90/xss-loader-xss-payload-generator-xss.html) - [Starkiller - A Frontend For PowerShell Empire](http://feedproxy.google.com/~r/PentestTools/~3/elk1Q6oQ6Mo/starkiller-frontend-for-powershell.html) - [FinalRecon v1.0.2 - OSINT Tool For All-In-One Web Reconnaissance](http://feedproxy.google.com/~r/PentestTools/~3/3okvQ1-7I50/finalrecon-v102-osint-tool-for-all-in.html) - [ScoringEngine - Scoring Engine For Red/White/Blue Team Competitions](http://feedproxy.google.com/~r/PentestTools/~3/6nojO49JRLQ/scoringengine-scoring-engine-for.html) - [Astra - Automated Security Testing For REST API's](http://feedproxy.google.com/~r/PentestTools/~3/hG6EAgiwsNY/astra-automated-security-testing-for.html) - [HTTPS Everywhere - A Browser Extension That Encrypts Your Communications With Many Websites That Offer HTTPS But Still Allow Unencrypted Connections](http://feedproxy.google.com/~r/PentestTools/~3/paesHNCAgvc/https-everywhere-browser-extension-that.html) - [uDork - Google Hacking Tool](http://feedproxy.google.com/~r/PentestTools/~3/1dZLaMyTZaw/udork-google-hacking-tool.html) - [XXExploiter - Tool To Help Exploit XXE Vulnerabilities](http://feedproxy.google.com/~r/PentestTools/~3/W5MJnUs6UJU/xxexploiter-tool-to-help-exploit-xxe.html) - [Maryam v1.4.0 - Open-source Intelligence(OSINT) Framework](http://feedproxy.google.com/~r/PentestTools/~3/a6fsiOPbEwE/maryam-v140-open-source.html) - [InstaSave - Python Script To Download Images, Videos & Profile Pictures From Instagram](http://feedproxy.google.com/~r/PentestTools/~3/MkEScdqkcss/instasave-python-script-to-download.html) - [xShock - Shellshock Exploit](http://feedproxy.google.com/~r/PentestTools/~3/CpqroyrzxeE/xshock-shellshock-exploit.html) - [Chepy - A Python Lib/Cli Equivalent Of The Awesome CyberChef Tool.](http://feedproxy.google.com/~r/PentestTools/~3/10m1tFD1-VA/chepy-python-libcli-equivalent-of.html) - [Sshuttle - Transparent Proxy Server That Works As A Poor Man'S VPN. Forwards Over SSH](http://feedproxy.google.com/~r/PentestTools/~3/_Z-rOpqm7NU/sshuttle-transparent-proxy-server-that.html) - [Lazydocker - The Lazier Way To Manage Everything Docker](http://feedproxy.google.com/~r/PentestTools/~3/m8cMANdPG5I/lazydocker-lazier-way-to-manage.html) - [Pypykatz - Mimikatz Implementation In Pure Python](http://feedproxy.google.com/~r/PentestTools/~3/5PztilQx0u4/pypykatz-mimikatz-implementation-in.html) - [Token-Reverser - Word List Generator To Crack Security Tokens](http://feedproxy.google.com/~r/PentestTools/~3/X2bKRiEGktY/token-reverser-word-list-generator-to.html) - [shuffleDNS - Wrapper Around Massdns Written In Go That Allows You To Enumerate Valid Subdomains](http://feedproxy.google.com/~r/PentestTools/~3/rrx6tcXT4Vg/shuffledns-wrapper-around-massdns.html) - [AWSGen.py - Generates Permutations, Alterations And Mutations Of AWS S3 Buckets Names](http://feedproxy.google.com/~r/PentestTools/~3/SagQLMEKNHs/awsgenpy-generates-permutations.html) - [Jeopardize - A Low(Zero) Cost Threat Intelligence & Response Tool Against Phishing Domains](http://feedproxy.google.com/~r/PentestTools/~3/1OfTItxHps8/jeopardize-lowzero-cost-threat.html) - [TEA - Ssh-Client Worm](http://feedproxy.google.com/~r/PentestTools/~3/F1A172DU-rM/tea-ssh-client-worm.html) - [Zelos - A Comprehensive Binary Emulation Platform](http://feedproxy.google.com/~r/PentestTools/~3/qKXzoe5Eh0E/zelos-comprehensive-binary-emulation.html) - [Pickl3 - Windows Active User Credential Phishing Tool](http://feedproxy.google.com/~r/PentestTools/~3/_iEA0MZdCwY/pickl3-windows-active-user-credential.html) - [Betwixt - Web Debugging Proxy Based On Chrome DevTools Network Panel](http://feedproxy.google.com/~r/PentestTools/~3/l5D0QslTtdA/betwixt-web-debugging-proxy-based-on.html) - [Dirble - Fast Directory Scanning And Scraping Tool](http://feedproxy.google.com/~r/PentestTools/~3/R3GTkdp1h1Y/dirble-fast-directory-scanning-and.html) - [Pentest Tools Framework - A Database Of Exploits, Scanners And Tools For Penetration Testing](http://feedproxy.google.com/~r/PentestTools/~3/Y6MNLlqvjcY/pentest-tools-framework-database-of.html) - [RedRabbit - Red Team PowerShell Script](http://feedproxy.google.com/~r/PentestTools/~3/lM7n5vczD30/redrabbit-red-team-powershell-script.html) - [Sifter - A OSINT, Recon And Vulnerability Scanner](http://feedproxy.google.com/~r/PentestTools/~3/jtvcLi48esc/sifter-osint-recon-and-vulnerability.html) - [FuzzBench - Fuzzer Benchmarking As A Service](http://feedproxy.google.com/~r/PentestTools/~3/YSLbgTkNe8I/fuzzbench-fuzzer-benchmarking-as-service.html) - [SSRF Sheriff - A Simple SSRF-testing Sheriff Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/LYrEi0Rzzok/ssrf-sheriff-simple-ssrf-testing.html) - [Evil SSDP - Spoof SSDP Replies And Create Fake UPnP Devices To Phish For Credentials And NetNTLM Challenge/Response](http://feedproxy.google.com/~r/PentestTools/~3/2_EEUCxHTOg/evil-ssdp-spoof-ssdp-replies-and-create.html) - [Proton Framework - A Windows Post Exploitation Framework Similar To Other Penetration Testing Tools Such As Meterpreter And Powershell Invader Framework](http://feedproxy.google.com/~r/PentestTools/~3/iwgsy9fNa_Q/proton-framework-windows-post.html) - [NTLMRecon - A Tool To Enumerate Information From NTLM Authentication Enabled Web Endpoints](http://feedproxy.google.com/~r/PentestTools/~3/-5fIrhdV5wU/ntlmrecon-tool-to-enumerate-information.html) - [HoneyBot - Capture, Upload And Analyze Network Traffic](http://feedproxy.google.com/~r/PentestTools/~3/fuF8npyiVbc/honeybot-capture-upload-and-analyze.html) - [HTTP Asynchronous Reverse Shell - Asynchronous Reverse Shell Using The HTTP Protocol](http://feedproxy.google.com/~r/PentestTools/~3/3KNoIjiuWq8/http-asynchronous-reverse-shell.html) - [Entropy Toolkit - A Set Of Tools To Exploit Netwave And GoAhead IP Webcams](http://feedproxy.google.com/~r/PentestTools/~3/NNcllHwMmEc/entropy-toolkit-set-of-tools-to-exploit.html) - [SharpRDP - Remote Desktop Protocol .NET Console Application For Authenticated Command Execution](http://feedproxy.google.com/~r/PentestTools/~3/lFPSF5jJpIc/sharprdp-remote-desktop-protocol-net.html) - [Ghost Framework - An Android Post Exploitation Framework That Uses An Android Debug Bridge To Remotely Access A n Android Device](http://feedproxy.google.com/~r/PentestTools/~3/PkP7ZK50a2g/ghost-framework-android-post.html) - [Extended-XSS-Search - Scans For Different Types Of XSS On A List Of URLs](http://feedproxy.google.com/~r/PentestTools/~3/c6DJVlJH-TQ/extended-xss-search-scans-for-different.html) - [Phonia Toolkit - One Of The Most Advanced Toolkits To Scan Phone Numbers Using Only Free Resources](http://feedproxy.google.com/~r/PentestTools/~3/dEM8uP1mKfM/phonia-toolkit-one-of-most-advanced.html) - [PrivescCheck - Privilege Escalation Enumeration Script For Windows](http://feedproxy.google.com/~r/PentestTools/~3/bYpS9N5_1u8/privesccheck-privilege-escalation.html) - [TwitWork - Monitor Twitter Stream](http://feedproxy.google.com/~r/PentestTools/~3/b-cPMo5l19E/twitwork-monitor-twitter-stream.html) - [XCTR Hacking Tools - All in one tools for Information Gathering](http://feedproxy.google.com/~r/PentestTools/~3/b6aWbeWNuv8/xctr-hacking-tools-all-in-one-tools-for.html) - [WiFi Passview v2.0 - An Open Source Batch Script Based WiFi Passview For Windows!](http://feedproxy.google.com/~r/PentestTools/~3/n6DKUp7nr78/wifi-passview-v20-open-source-batch.html) - [dnsFookup - DNS Rebinding Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/F41mOliutE4/dnsfookup-dns-rebinding-toolkit.html) - [BadBlood - Fills A Microsoft Active Directory Domain With A Structure And Thousands Of Objects](http://feedproxy.google.com/~r/PentestTools/~3/0RIQKSdcD7g/badblood-fills-microsoft-active.html) - [Xencrypt - A PowerShell Script Anti-Virus Evasion Tool](http://feedproxy.google.com/~r/PentestTools/~3/tsG6j90hzCs/xencrypt-powershell-script-anti-virus.html) - [Subfinder - A Subdomain Discovery Tool That Discovers Valid Subdomains For Websites](http://feedproxy.google.com/~r/PentestTools/~3/vCZaCN82KYg/subfinder-subdomain-discovery-tool-that.html) - [Extended-SSRF-Search - Smart SSRF Scanner Using Different Methods Like Parameter Brute Forcing In Post And Get...](http://feedproxy.google.com/~r/PentestTools/~3/af0QkevNIdM/extended-ssrf-search-smart-ssrf-scanner.html) - [IoTGoat - A Deliberately Insecure Firmware Based On OpenWrt](http://feedproxy.google.com/~r/PentestTools/~3/Na957g08Nao/iotgoat-deliberately-insecure-firmware.html) - [Polyshell - A Bash/Batch/PowerShell Polyglot!](http://feedproxy.google.com/~r/PentestTools/~3/lBSRHwUKH54/polyshell-bashbatchpowershell-polyglot.html) - [Mouse Framework - An iOS And macOS Post Exploitation Surveillance Framework That Gives You A Command Line Session With Extra Functionality Between You And A Target Machine Using Only A Simple Mouse Payload](http://feedproxy.google.com/~r/PentestTools/~3/44DtEktjcjs/mouse-framework-ios-and-macos-post.html) - [Multi-Juicer - Run Capture The Flags And Security Trainings With OWASP Juice Shop](http://feedproxy.google.com/~r/PentestTools/~3/rp0ruyY5g8Y/multi-juicer-run-capture-flags-and.html) - [Progress-Burp - Burp Suite Extension To Track Vulnerability Assessment Progress](http://feedproxy.google.com/~r/PentestTools/~3/eKC-H8D-mlc/progress-burp-burp-suite-extension-to.html) - [Faraday presents the latest version of their Security Platform for Vulnerability Management Automation](http://feedproxy.google.com/~r/PentestTools/~3/o3jspfMgbBg/faraday-presents-latest-version-of.html) - [ABD - Course Materials For Advanced Binary Deobfuscation](http://feedproxy.google.com/~r/PentestTools/~3/20oxrKN1-QM/abd-course-materials-for-advanced.html) - [Wifi-Hacker - Shell Script For Attacking Wireless Connections Using Built-In Kali Tools](http://feedproxy.google.com/~r/PentestTools/~3/reqKjsxqjec/wifi-hacker-shell-script-for-attacking.html) - [get_Team_Pass - Get Teamviewer's ID And Password From A Remote Computer In The LAN](http://feedproxy.google.com/~r/PentestTools/~3/2nV32YcnHLc/getteampass-get-teamviewers-id-and.html) - [Faraday presents the latest version of their Security Platform for Vulnerability Management Automation](http://feedproxy.google.com/~r/PentestTools/~3/o3jspfMgbBg/faraday-presents-latest-version-of.html) - [Dnssearch - A Subdomain Enumeration Tool](http://feedproxy.google.com/~r/PentestTools/~3/cSEFFSWU82Y/dnssearch-subdomain-enumeration-tool.html) - [Liffy - Local File Inclusion Exploitation Tool](http://feedproxy.google.com/~r/PentestTools/~3/doCxm7pPktM/liffy-local-file-inclusion-exploitation.html) - [DLLPasswordFilterImplant - DLL Password Filter Implant With Exfiltration Capabilities](http://feedproxy.google.com/~r/PentestTools/~3/mifVxsKvfDU/dllpasswordfilterimplant-dll-password.html) - [Ohmybackup - Scan Victim Backup Directories & Backup Files](http://feedproxy.google.com/~r/PentestTools/~3/ZCghGgPokOs/ohmybackup-scan-victim-backup.html) - [Gadgetinspector - A Byte Code Analyzer For Finding Deserialization Gadget Chains In Java Applications](http://feedproxy.google.com/~r/PentestTools/~3/616DRhcc9PY/gadgetinspector-byte-code-analyzer-for.html) - [OWASP D4N155 - Intelligent And Dynamic Wordlist Using OSINT](http://feedproxy.google.com/~r/PentestTools/~3/n1VoccnlfBQ/owasp-d4n155-intelligent-and-dynamic.html) - [TaskManager-Button-Disabler - Simple Way To Disable/Rename Buttons From A Task Manager](http://feedproxy.google.com/~r/PentestTools/~3/i-DTAybLUlQ/taskmanager-button-disabler-simple-way.html) - [SUDO_KILLER - A Tool To Identify And Exploit Sudo Rules' Misconfigurations And Vulnerabilities Within Sudo](http://feedproxy.google.com/~r/PentestTools/~3/mJ6rC9VO2Lw/sudokiller-tool-to-identify-and-exploit.html) - [Adama - Searches For Threat Hunting And Security Analytics](http://feedproxy.google.com/~r/PentestTools/~3/Lw8c0rtzWHk/adama-searches-for-threat-hunting-and.html) - [Metabigor - Intelligence Tool But Without API Key](http://feedproxy.google.com/~r/PentestTools/~3/H-YTt6OEKcU/metabigor-intelligence-tool-but-without.html) - [Rabid - A CLI Tool And Library Allowing To Simply Decode All Kind Of BigIP Cookies](http://feedproxy.google.com/~r/PentestTools/~3/1JMZZAEpemQ/rabid-cli-tool-and-library-allowing-to.html) - [0L4Bs - Cross-site Scripting Labs For Web Application Security Enthusiasts](http://feedproxy.google.com/~r/PentestTools/~3/Y4d76WceP4E/0l4bs-cross-site-scripting-labs-for-web.html) - [CVE Api - Parse & filter the latest CVEs from cve.mitre.org](http://feedproxy.google.com/~r/PentestTools/~3/Ek-Lal8-LH8/cve-api-parse-filter-latest-cves-from.html) - [NekoBot - Auto Exploiter With 500+ Exploit 2000+ Shell](http://feedproxy.google.com/~r/PentestTools/~3/u2JnZaho9cA/nekobot-auto-exploiter-with-500-exploit.html) - [Gospider - Fast Web Spider Written In Go](http://feedproxy.google.com/~r/PentestTools/~3/PdxXgvqeH3g/gospider-fast-web-spider-written-in-go.html) - [DecryptTeamViewer - Enumerate And Decrypt TeamViewer Credentials From Windows Registry](http://feedproxy.google.com/~r/PentestTools/~3/uYU3KYqg2cg/decryptteamviewer-enumerate-and-decrypt.html) - [DrSemu - Malware Detection And Classification Tool Based On Dynamic Behavior](http://feedproxy.google.com/~r/PentestTools/~3/FA9NSGPorlI/drsemu-malware-detection-and.html) - [Syborg - Recursive DNS Subdomain Enumerator With Dead-End Avoidance System](http://feedproxy.google.com/~r/PentestTools/~3/oPQt_c36ATg/syborg-recursive-dns-subdomain.html) - [Manul - A Coverage-Guided Parallel Fuzzer For Open-Source And Blackbox Binaries On Windows, Linux And MacOS](http://feedproxy.google.com/~r/PentestTools/~3/UD2xNacURp8/manul-coverage-guided-parallel-fuzzer.html) - [Fuzzowski - The Network Protocol Fuzzer That We Will Want To Use](http://feedproxy.google.com/~r/PentestTools/~3/eu4riYMhOb4/fuzzowski-network-protocol-fuzzer-that.html) - [Nray - Distributed Port Scanner](http://feedproxy.google.com/~r/PentestTools/~3/uUwUFSIzAtI/nray-distributed-port-scanner.html) - [BurpSuite Random User-Agents - Burp Suite Extension For Generate A Random User-Agents](http://feedproxy.google.com/~r/PentestTools/~3/XWRZVszjjKQ/burpsuite-random-user-agents-burp-suite.html) - [CTFTOOL - Interactive CTF Exploration Tool](http://feedproxy.google.com/~r/PentestTools/~3/SMda1qfS7rQ/ctftool-interactive-ctf-exploration-tool.html) - [Aduket - Straight-forward HTTP Client Testing, Assertions Included](http://feedproxy.google.com/~r/PentestTools/~3/IoOp4Q2Bsdw/aduket-straight-forward-http-client.html) - [OpenRelayMagic - Tool To Find SMTP Servers Vulnerable To Open Relay](http://feedproxy.google.com/~r/PentestTools/~3/8djCQDrFViE/openrelaymagic-tool-to-find-smtp.html) - [Hashcracker - Python Hash Cracker](http://feedproxy.google.com/~r/PentestTools/~3/tQ9w6e50haI/hashcracker-python-hash-cracker.html) - [KawaiiDeauther - Jam All Wifi Clients/Routers](http://feedproxy.google.com/~r/PentestTools/~3/I4p_-V-WdL4/kawaiideauther-jam-all-wifi.html) - [Agente - Distributed Simple And Robust Release Management And Monitoring System](http://feedproxy.google.com/~r/PentestTools/~3/MMfIyPc4oQY/agente-distributed-simple-and-robust.html) - [XSS-Freak - An XSS Scanner Fully Written In Python3 From Scratch](http://feedproxy.google.com/~r/PentestTools/~3/zKryaXden3w/xss-freak-xss-scanner-fully-written-in.html) - [IPv6Tools - A Robust Modular Framework That Enables The Ability To Visually Audit An IPv6 Enabled Network](http://feedproxy.google.com/~r/PentestTools/~3/zIWvMXjZXwY/ipv6tools-robust-modular-framework-that.html) - [Pytm - A Pythonic Framework For Threat Modeling](http://feedproxy.google.com/~r/PentestTools/~3/I-03rNekozE/pytm-pythonic-framework-for-threat.html) - [Netdata - Real-time Performance Monitoring](http://feedproxy.google.com/~r/PentestTools/~3/GZiaz-U_eV0/netdata-real-time-performance-monitoring.html) - [InjuredAndroid - A Vulnerable Android Application That Shows Simple Examples Of Vulnerabilities In A CTF Style](http://feedproxy.google.com/~r/PentestTools/~3/AlIo6dS7vnA/injuredandroid-vulnerable-android.html) - [FockCache - Minimalized Test Cache Poisoning](http://feedproxy.google.com/~r/PentestTools/~3/yvUsaKZFbKE/fockcache-minimalized-test-cache.html) - [Acunetix v13 - Web Application Security Scanner](http://feedproxy.google.com/~r/PentestTools/~3/cILVQWYMmjE/acunetix-v13-web-application-security.html) - [SEcraper - Search Engine Scraper Tool With BASH Script.](http://feedproxy.google.com/~r/PentestTools/~3/XB3R6BuCcL4/secraper-search-engine-scraper-tool.html) - [Re2Pcap - Create PCAP file from raw HTTP request or response in seconds](http://feedproxy.google.com/~r/PentestTools/~3/yN0HmWU-WRs/re2pcap-create-pcap-file-from-raw-http.html) - [Takeover v0.2 - Sub-Domain TakeOver Vulnerability Scanner](http://feedproxy.google.com/~r/PentestTools/~3/IDqUAZyTWp8/takeover-v02-sub-domain-takeover.html) - [Misp-Dashboard - A Dashboard For A Real-Time Overview Of Threat Intelligence From MISP Instances](http://feedproxy.google.com/~r/PentestTools/~3/njo_mxuM5uQ/misp-dashboard-dashboard-for-real-time.html) - [Jaeles v0.4 - The Swiss Army Knife For Automated Web Application Testing](http://feedproxy.google.com/~r/PentestTools/~3/0ZdNMINytRU/jaeles-v04-swiss-army-knife-for.html) - [Dufflebag - Search Exposed EBS Volumes For Secrets](http://feedproxy.google.com/~r/PentestTools/~3/lY7u0_HX1rY/dufflebag-search-exposed-ebs-volumes.html) - [Qiling - Advanced Binary Emulation Framework](http://feedproxy.google.com/~r/PentestTools/~3/so35MNAD8Ds/qiling-advanced-binary-emulation.html) - [Nfstream - A Flexible Network Data Analysis Framework](http://feedproxy.google.com/~r/PentestTools/~3/7wTSiAirmI4/nfstream-flexible-network-data-analysis.html) - [WhatTheHack - A Collection Of Challenge Based Hack-A-Thons Including Student Guide, Proctor Guide, Lecture Presentations, Sample/Instructional Code And Templates](http://feedproxy.google.com/~r/PentestTools/~3/UVLZMgsEoyE/whatthehack-collection-of-challenge.html) - [Injectus - CRLF And Open Redirect Fuzzer](http://feedproxy.google.com/~r/PentestTools/~3/4Y4q9n5vYvI/injectus-crlf-and-open-redirect-fuzzer.html) - [PCFG Cracker - Probabilistic Context Free Grammar (PCFG) Password Guess Generator](http://feedproxy.google.com/~r/PentestTools/~3/pUPLSnr8DAg/pcfg-cracker-probabilistic-context-free.html) - [DVNA - Damn Vulnerable NodeJS Application](http://feedproxy.google.com/~r/PentestTools/~3/PK1o0xNPV_c/dvna-damn-vulnerable-nodejs-application.html) - [GDA Android Reversing Tool - A New Decompiler Written Entirely In C++, So It Does Not Rely On The Java Platform, Which Is Succinct, Portable And Fast, And Supports APK, DEX, ODEX, Oat](http://feedproxy.google.com/~r/PentestTools/~3/d0P7zuioR8E/gda-android-reversing-tool-new.html) - [Project-Black - Pentest/BugBounty Progress Control With Scanning Modules](http://feedproxy.google.com/~r/PentestTools/~3/Ax6sehyyy7Q/project-black-pentestbugbounty-progress.html) - [RiskAssessmentFramework - Static Application Security Testing](http://feedproxy.google.com/~r/PentestTools/~3/tKjitJqHxMY/riskassessmentframework-static.html) - [MassDNS - A High-Performance DNS Stub Resolver For Bulk Lookups And Reconnaissance (Subdomain Enumeration)](http://feedproxy.google.com/~r/PentestTools/~3/wardjAcW3y8/massdns-high-performance-dns-stub.html) - [S3Enum - Fast Amazon S3 Bucket Enumeration Tool For Pentesters](http://feedproxy.google.com/~r/PentestTools/~3/cRCWjBIgR3Q/s3enum-fast-amazon-s3-bucket.html) - [See-SURF - Python Based Scanner To Find Potential SSRF Parameters](http://feedproxy.google.com/~r/PentestTools/~3/BTvpSqsYkxI/see-surf-python-based-scanner-to-find.html) - [Blinder - A Python Library To Automate Time-Based Blind SQL Injection](http://feedproxy.google.com/~r/PentestTools/~3/YQkDIo_3R6s/blinder-python-library-to-automate-time.html) - [Obfuscapk - A Black-Box Obfuscation Tool For Android Apps](http://feedproxy.google.com/~r/PentestTools/~3/FL9KaM-xfFs/obfuscapk-black-box-obfuscation-tool.html) - [Kali Linux 2020.1 Release - Penetration Testing and Ethical Hacking Linux Distribution](http://feedproxy.google.com/~r/PentestTools/~3/RSHYk9L_sow/kali-linux-20201-release-penetration.html) - [PythonAESObfuscate - Obfuscates A Python Script And The Accompanying Shellcode](http://feedproxy.google.com/~r/PentestTools/~3/QEb6i3xJnFE/pythonaesobfuscate-obfuscates-python.html) - [ApplicationInspector - A Source Code Analyzer Built For Surfacing Features Of Interest And Other Characteristics To Answer The Question 'What'S In It' Using Static Analysis With A Json Based Rules Engine](http://feedproxy.google.com/~r/PentestTools/~3/mCSCxjbcOGE/applicationinspector-source-code.html) - [CredNinja - A Multithreaded Tool Designed To Identify If Credentials Are Valid, Invalid, Or Local Admin Valid Credentials Within A Network At-Scale Via SMB, Plus Now With A User Hunter](http://feedproxy.google.com/~r/PentestTools/~3/uvDDyxM0J6o/credninja-multithreaded-tool-designed.html) - [Mimir - Smart OSINT Collection Of Common IOC Types](http://feedproxy.google.com/~r/PentestTools/~3/_x0y2TtxD5w/mimir-smart-osint-collection-of-common.html) - [Socialscan - Check Email Address And Username Availability On Online Platforms With 100% Accuracy](http://feedproxy.google.com/~r/PentestTools/~3/yHydtjSLSqU/socialscan-check-email-address-and.html) - [Aircrack-ng 1.6 - Complete Suite Of Tools To Assess WiFi Network Security](http://feedproxy.google.com/~r/PentestTools/~3/A9m6uTb9wwY/aircrack-ng-16-complete-suite-of-tools.html) - [Memhunter - Live Hunting Of Code Injection Techniques](http://feedproxy.google.com/~r/PentestTools/~3/t80qn5tgm1w/memhunter-live-hunting-of-code.html) - [AgentSmith-HIDS - Open Source Host-based Intrusion Detection System (HIDS)](http://feedproxy.google.com/~r/PentestTools/~3/ktpMleroAeg/agentsmith-hids-open-source-host-based.html) - [Hershell - Multiplatform Reverse Shell Generator](http://feedproxy.google.com/~r/PentestTools/~3/rBBYS2KJVlk/hershell-multiplatform-reverse-shell.html) - [Check-LocalAdminHash - A PowerShell Tool That Attempts To Authenticate To Multiple Hosts Over Either WMI Or SMB Using A Password Hash To Determine If The Provided Credential Is A Local Administrator](http://feedproxy.google.com/~r/PentestTools/~3/-OGGgCcLOic/check-localadminhash-powershell-tool.html) - [SharpStat - C# Utility That Uses WMI To Run "cmd.exe /c netstat -n", Save The Output To A File, Then Use SMB To Read And Delete The File Remotely](http://feedproxy.google.com/~r/PentestTools/~3/L_7F6PqfmYQ/sharpstat-c-utility-that-uses-wmi-to.html) - [KsDumper - Dumping Processes Using The Power Of Kernel Space](http://feedproxy.google.com/~r/PentestTools/~3/WAXe05PXlLE/ksdumper-dumping-processes-using-power.html) - [YARASAFE - Automatic Binary Function Similarity Checks with Yara](http://feedproxy.google.com/~r/PentestTools/~3/Oj-R3rE4Nqs/yarasafe-automatic-binary-function.html) - [AlertResponder - Automatic Security Alert Response Framework By AWS Serverless Application Model](http://feedproxy.google.com/~r/PentestTools/~3/Wz_C66kvWFE/alertresponder-automatic-security-alert.html) - [TAS - A Tiny Framework For Easily Manipulate The Tty And Create Fake Binaries](http://feedproxy.google.com/~r/PentestTools/~3/HXA3Vvtm-Bk/tas-tiny-framework-for-easily.html) - [Corsy v1.0 - CORS Misconfiguration Scanner](http://feedproxy.google.com/~r/PentestTools/~3/58-ls_cmwQw/corsy-v10-cors-misconfiguration-scanner.html) - [TeleGram-Scraper - Telegram Group Scraper Tool (Fetch All Information About Group Members)](http://feedproxy.google.com/~r/PentestTools/~3/2Eo2G25RcDQ/telegram-scraper-telegram-group-scraper.html) - [Grouper2 - Find Vulnerabilities In AD Group Policy](http://feedproxy.google.com/~r/PentestTools/~3/gWXrrK2NyKY/grouper2-find-vulnerabilities-in-ad.html) - [Gophish - Open-Source Phishing Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/btpn4JOATyY/gophish-open-source-phishing-toolkit.html) - [Aaia - AWS Identity And Access Management Visualizer And Anomaly Finder](http://feedproxy.google.com/~r/PentestTools/~3/2yvKL6xqlqM/aaia-aws-identity-and-access-management.html) - [Scallion - GPU-based Onion Addresses Hash Generator](http://feedproxy.google.com/~r/PentestTools/~3/FqpfCNmnoQU/scallion-gpu-based-onion-addresses-hash.html) - [Bluewall - A Firewall Framework Designed For Offensive And Defensive Cyber Professionals](http://feedproxy.google.com/~r/PentestTools/~3/A7Padhi7JMQ/bluewall-firewall-framework-designed.html) - [AntiCheat-Testing-Framework - Framework To Test Any Anti-Cheat](http://feedproxy.google.com/~r/PentestTools/~3/MoEg1J7w6pk/anticheat-testing-framework-framework.html) - [Gowitness - A Golang, Web Screenshot Utility Using Chrome Headless](http://feedproxy.google.com/~r/PentestTools/~3/Y17_OJQnjrw/gowitness-golang-web-screenshot-utility.html) - [Lsassy - Extract Credentials From Lsass Remotely](http://feedproxy.google.com/~r/PentestTools/~3/Mfhkp5fW17U/lsassy-extract-credentials-from-lsass.html) - [LOLBITS - C# Reverse Shell Using Background Intelligent Transfer Service (BITS) As Communication Protocol](http://feedproxy.google.com/~r/PentestTools/~3/8qthCOAJoKw/lolbits-c-reverse-shell-using.html) - [Shell Backdoor List - PHP / ASP Shell Backdoor List](http://feedproxy.google.com/~r/PentestTools/~3/4bTU5BSifCg/shell-backdoor-list-php-asp-shell.html) - [Hakrawler - Simple, Fast Web Crawler Designed For Easy, Quick Discovery Of Endpoints And Assets Within A Web Application](http://feedproxy.google.com/~r/PentestTools/~3/8uHkviu3bCQ/hakrawler-simple-fast-web-crawler.html) - [Gtfo - Search For Unix Binaries That Can Be Exploited To Bypass System Security Restrictions](http://feedproxy.google.com/~r/PentestTools/~3/vY14tKcJFoo/gtfo-search-for-unix-binaries-that-can.html) - [SWFPFinder - SWF Potential Parameters Finder](http://feedproxy.google.com/~r/PentestTools/~3/oq6S3f4ZiN8/swfpfinder-swf-potential-parameters.html) - [laravelN00b - Automated Scan .env Files And Checking Debug Mode In Victim Host](http://feedproxy.google.com/~r/PentestTools/~3/2gcvf8zseEA/laraveln00b-automated-scan-env-files.html) - [Andriller - Software Utility With A Collection Of Forensic Tools For Smartphones](http://feedproxy.google.com/~r/PentestTools/~3/CGAtcMHkN58/andriller-software-utility-with.html) - [LAVA - Large-scale Automated Vulnerability Addition](http://feedproxy.google.com/~r/PentestTools/~3/NcAB_2aw32k/lava-large-scale-automated.html) - [Heapinspect - Inspect Heap In Python](http://feedproxy.google.com/~r/PentestTools/~3/IiCD14cYq24/heapinspect-inspect-heap-in-python.html) - [CHAPS - Configuration Hardening Assessment PowerShell Script](http://feedproxy.google.com/~r/PentestTools/~3/5KGQldrk1HE/chaps-configuration-hardening.html) - [Karonte - A Static Analysis Tool To Detect Multi-Binary Vulnerabilities In Embedded Firmware](http://feedproxy.google.com/~r/PentestTools/~3/Id6YHzVv09A/karonte-static-analysis-tool-to-detect.html) - [IotShark - Monitoring And Analyzing IoT Traffic](http://feedproxy.google.com/~r/PentestTools/~3/PeNmS58306Q/iotshark-monitoring-and-analyzing-iot.html) - [LNAV - Log File Navigator](http://feedproxy.google.com/~r/PentestTools/~3/3vkEu05vBmw/lnav-log-file-navigator.html) - [TuxResponse - Linux Incident Response](http://feedproxy.google.com/~r/PentestTools/~3/XkMJJaEjx_Q/tuxresponse-linux-incident-response.html) - [Stowaway - Multi-hop Proxy Tool For Pentesters](http://feedproxy.google.com/~r/PentestTools/~3/YKyUkJguG1o/stowaway-multi-hop-proxy-tool-for.html) - [Git-Vuln-Finder - Finding Potential Software Vulnerabilities From Git Commit Messages](http://feedproxy.google.com/~r/PentestTools/~3/6trl3SIo3BM/git-vuln-finder-finding-potential.html) - [WAFW00F v2.0 - Allows One To Identify And Fingerprint Web Application Firewall (WAF) Products Protecting A Website](http://feedproxy.google.com/~r/PentestTools/~3/x0wBL8NRXaE/wafw00f-v20-allows-one-to-identify-and.html) - [XposedOrNot - Tool To Search An Aggregated Repository Of Xposed Passwords Comprising Of ~850 Million Real Time Passwords](http://feedproxy.google.com/~r/PentestTools/~3/djD79KVqJpY/xposedornot-tool-to-search-aggregated.html) - [Dsync - IDAPython Plugin That Synchronizes Disassembler And Decompiler Views](http://feedproxy.google.com/~r/PentestTools/~3/cTZCZAOl5ZY/dsync-idapython-plugin-that.html) - [RFCpwn - An Enumeration And Exploitation Toolkit Using RFC Calls To SAP](http://feedproxy.google.com/~r/PentestTools/~3/SxCeVp5LrPY/rfcpwn-enumeration-and-exploitation.html) - [LKWA - Lesser Known Web Attack Lab](http://feedproxy.google.com/~r/PentestTools/~3/_D8J5ofnkjc/lkwa-lesser-known-web-attack-lab.html) - [Multiscanner - Modular File Scanning/Analysis Framework](http://feedproxy.google.com/~r/PentestTools/~3/JCWYObLaesQ/multiscanner-modular-file.html) - [Findomain v0.9.3 - The Fastest And Cross-Platform Subdomain Enumerator](http://feedproxy.google.com/~r/PentestTools/~3/F8FCuzzp1eY/findomain-v093-fastest-and-cross.html) - [OKadminFinder - Admin Panel Finder / Admin Login Page Finder](http://feedproxy.google.com/~r/PentestTools/~3/Wy3OcRdb1pk/okadminfinder-admin-panel-finder-admin.html) - [BetterBackdoor - A Backdoor With A Multitude Of Features](http://feedproxy.google.com/~r/PentestTools/~3/fnQYMC92Af4/betterbackdoor-backdoor-with-multitude.html) - [Spraykatz - A Tool Able To Retrieve Credentials On Windows Machines And Large Active Directory Environments](http://feedproxy.google.com/~r/PentestTools/~3/hk7FN1evtJ4/spraykatz-tool-able-to-retrieve.html) - [Shelly - Simple Backdoor Manager With Python (Based On Weevely)](http://feedproxy.google.com/~r/PentestTools/~3/Oof3oJ5ys_U/shelly-simple-backdoor-manager-with.html) - [huskyCI - Performing Security Tests Inside Your CI](http://feedproxy.google.com/~r/PentestTools/~3/PCjfmxm5mk0/huskyci-performing-security-tests.html) - [AttackSurfaceMapper - A Tool That Aims To Automate The Reconnaissance Process](http://feedproxy.google.com/~r/PentestTools/~3/BaoKl5m0_Zg/attacksurfacemapper-tool-that-aims-to.html) - [Pylane - An Python VM Injector With Debug Tools, Based On GDB](http://feedproxy.google.com/~r/PentestTools/~3/NXSFocHtf4w/pylane-python-vm-injector-with-debug.html) - [PAKURI - Penetration Test Achieve Knowledge Unite Rapid Interface](http://feedproxy.google.com/~r/PentestTools/~3/Mi6WN2Gybmo/pakuri-penetration-test-achieve.html) - [Malwinx - Just A Normal Flask Web App To Understand Win32Api With Code Snippets And References](http://feedproxy.google.com/~r/PentestTools/~3/uJtIDU0fedk/malwinx-just-normal-flask-web-app-to.html) - [Quark-Engine - An Obfuscation-Neglect Android Malware Scoring System](http://feedproxy.google.com/~r/PentestTools/~3/utzP6iBfGHg/quark-engine-obfuscation-neglect.html) - [nmapAutomator - Tool To Automate All Of The Process Of Recon/Enumeration](http://feedproxy.google.com/~r/PentestTools/~3/E4Iu0NnZ68s/nmapautomator-tool-to-automate-all-of.html) - [RansomCoin - A DFIR Tool To Extract Cryptocoin Addresses And Other Indicators Of Compromise From Binaries](http://feedproxy.google.com/~r/PentestTools/~3/GvziPKgW9H8/ransomcoin-dfir-tool-to-extract.html) - [Pown.js - A Security Testing An Exploitation Toolkit Built On Top Of Node.js And NPM](http://feedproxy.google.com/~r/PentestTools/~3/d6N6weN0Sls/pownjs-security-testing-exploitation.html) - [Top 20 Most Popular Hacking Tools in 2019](http://feedproxy.google.com/~r/PentestTools/~3/nlQ2cTwvBWU/top-20-most-popular-hacking-tools-in.html) - [Turbolist3r - Subdomain Enumeration Tool With Analysis Features For Discovered Domains](http://feedproxy.google.com/~r/PentestTools/~3/N2YrQhf-ZQA/turbolist3r-subdomain-enumeration-tool.html) - [SQLMap v1.4 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/E9qL_gItzM0/sqlmap-v14-automatic-sql-injection-and.html) - [AVCLASS++ - Yet Another Massive Malware Labeling Tool](http://feedproxy.google.com/~r/PentestTools/~3/grHx9mKrtYw/avclass-yet-another-massive-malware.html) - [XSpear v1.3 - Powerfull XSS Scanning And Parameter Analysis Tool](http://feedproxy.google.com/~r/PentestTools/~3/bznAwae962s/xspear-v13-powerfull-xss-scanning-and.html) - [Kamerka GUI - Ultimate Internet Of Things/Industrial Control Systems Reconnaissance Tool](http://feedproxy.google.com/~r/PentestTools/~3/VXVdUp5N_VE/kamerka-gui-ultimate-internet-of.html) - [SysWhispers - AV/EDR Evasion Via Direct System Calls](http://feedproxy.google.com/~r/PentestTools/~3/WdlNh76UZmY/syswhispers-avedr-evasion-via-direct.html) - [S3Tk - A Security Toolkit For Amazon S3](http://feedproxy.google.com/~r/PentestTools/~3/I-t2K2h-_nM/s3tk-security-toolkit-for-amazon-s3.html) - [WindowsFirewallRuleset - Windows Firewall Ruleset Powershell Scripts](http://feedproxy.google.com/~r/PentestTools/~3/k141Im4eB3o/windowsfirewallruleset-windows-firewall.html) - [AWS Report - Tool For Analyzing Amazon Resources](http://feedproxy.google.com/~r/PentestTools/~3/SAdoyWAz1c4/aws-report-tool-for-analyzing-amazon.html) - [Tishna - Complete Automated Pentest Framework For Servers, Application Layer To Web Security](http://feedproxy.google.com/~r/PentestTools/~3/3wBSl0rNph4/tishna-complete-automated-pentest.html) - [RedPeanut - A Small RAT Developed In .Net Core 2 And Its Agent In .Net 3.5/4.0](http://feedproxy.google.com/~r/PentestTools/~3/UUoNVH2ftOs/redpeanut-small-rat-developed-in-net.html) - [DetectionLab - Vagrant And Packer Scripts To Build A Lab Environment Complete With Security Tooling And Logging Best Practices](http://feedproxy.google.com/~r/PentestTools/~3/wfG0ntJ0tYI/detectionlab-vagrant-and-packer-scripts.html) - [Andor - Blind SQL Injection Tool With Golang](http://feedproxy.google.com/~r/PentestTools/~3/zATm4I4cspQ/andor-blind-sql-injection-tool-with.html) - [SQL Injection Payload List](http://feedproxy.google.com/~r/PentestTools/~3/ayR6sAbbWFM/sql-injection-payload-list.html) - [WinPwn - Automation For Internal Windows Penetrationtest / AD-Security](http://feedproxy.google.com/~r/PentestTools/~3/-4Y4QPv6370/winpwn-automation-for-internal-windows.html) - [Ddoor - Cross Platform Backdoor Using Dns Txt Records](http://feedproxy.google.com/~r/PentestTools/~3/lT6QmCTiWZI/ddoor-cross-platform-backdoor-using-dns.html) - [Custom Header - Automatic Add New Header To Entire BurpSuite HTTP Requests](http://feedproxy.google.com/~r/PentestTools/~3/FrRisehI7Hw/custom-header-automatic-add-new-header.html) - [SCShell - Fileless Lateral Movement Tool That Relies On ChangeServiceConfigA To Run Command](http://feedproxy.google.com/~r/PentestTools/~3/X10EwvOx9PQ/scshell-fileless-lateral-movement-tool.html) - [Ultimate Facebook Scraper - A Bot Which Scrapes Almost Everything About A Facebook User'S Profile Including All Public Posts/Statuses Available On The User'S Timeline, Uploaded Photos, Tagged Photos, Videos, Friends List And Their Profile Photos](http://feedproxy.google.com/~r/PentestTools/~3/gp_DtiGu_sY/ultimate-facebook-scraper-bot-which.html) - [FireProx - AWS API Gateway Management Tool For Creating On The Fly HTTP Pass-Through Proxies For Unique IP Rotation](http://feedproxy.google.com/~r/PentestTools/~3/TkQaYYrkjO8/fireprox-aws-api-gateway-management.html) - [DNCI - Dot Net Code Injector](http://feedproxy.google.com/~r/PentestTools/~3/Ji5q7TQco-c/dnci-dot-net-code-injector.html) - [RdpThief - Extracting Clear Text Passwords From Mstsc.Exe Using API Hooking](http://feedproxy.google.com/~r/PentestTools/~3/_16Af6YgVU4/rdpthief-extracting-clear-text.html) - [Leprechaun - Tool Used To Map Out The Network Data Flow To Help Penetration Testers Identify Potentially Valuable Targets](http://feedproxy.google.com/~r/PentestTools/~3/6JmHURb1L1E/leprechaun-tool-used-to-map-out-network.html) - [Glances - An Eye On Your System. A Top/Htop Alternative For GNU/Linux, BSD, Mac OS And Windows Operating Systems](http://feedproxy.google.com/~r/PentestTools/~3/Bi11t3vQPXc/glances-eye-on-your-system-tophtop.html) - [Sshtunnel - SSH Tunnels To Remote Server](http://feedproxy.google.com/~r/PentestTools/~3/6M8Oysn80ZY/sshtunnel-ssh-tunnels-to-remote-server.html) - [RE:TERNAL - Repo Containing Docker-Compose Files And Setup Scripts Without Having To Clone The Individual Reternal Components](http://feedproxy.google.com/~r/PentestTools/~3/IYzPV_tA-XI/reternal-repo-containing-docker-compose.html) - [Antispy - A Free But Powerful Anti Virus And Rootkits Toolkit](http://feedproxy.google.com/~r/PentestTools/~3/XkcKtXVulps/antispy-free-but-powerful-anti-virus.html) - [Flan - A Pretty Sweet Vulnerability Scanner By CloudFlare](http://feedproxy.google.com/~r/PentestTools/~3/6-Bh9w3dbPk/flan-pretty-sweet-vulnerability-scanner.html) - [Corsy - CORS Misconfiguration Scanner](http://feedproxy.google.com/~r/PentestTools/~3/0C7E2QC4myo/corsy-cors-misconfiguration-scanner.html) - [Kali Linux 2019.4 Release - Penetration Testing and Ethical Hacking Linux Distribution](http://feedproxy.google.com/~r/PentestTools/~3/l8pYhW33fno/kali-linux-20194-release-penetration.html) - [XML External Entity (XXE) Injection Payload List](http://feedproxy.google.com/~r/PentestTools/~3/eAuCIbT3oBk/xml-external-entity-xxe-injection.html) - [ATFuzzer - Dynamic Analysis Of AT Interface For Android Smartphones](http://feedproxy.google.com/~r/PentestTools/~3/OL4U89ASYkU/atfuzzer-dynamic-analysis-of-at.html) - [Netstat2Neo4J - Create Cypher Create Statements For Neo4J Out Of Netstat Files From Multiple Machines](http://feedproxy.google.com/~r/PentestTools/~3/3d0Xl5zLmqY/netstat2neo4j-create-cypher-create.html) - [BaseQuery - A Way To Organize Public Combo-Lists And Leaks In A Way That You Can Easily Search Through Everything](http://feedproxy.google.com/~r/PentestTools/~3/xagTe4W9uT4/basequery-way-to-organize-public-combo.html) - [Attack Monitor - Endpoint Detection And Malware Analysis Software](http://feedproxy.google.com/~r/PentestTools/~3/_RxX4yOr-Ts/attack-monitor-endpoint-detection-and.html) - [Crashcast-Exploit - This Tool Allows You Mass Play Any YouTube Video With Chromecasts Obtained From Shodan.io](http://feedproxy.google.com/~r/PentestTools/~3/xeXSGXnN_xA/crashcast-exploit-this-tool-allows-you.html) - [Tool-X - A Kali Linux Hacking Tool Installer](http://feedproxy.google.com/~r/PentestTools/~3/JqzGZm7j4JQ/tool-x-kali-linux-hacking-tool-installer.html) - [SQLMap v1.3 - Automatic SQL Injection And Database Takeover Tool](http://feedproxy.google.com/~r/PentestTools/~3/RNZTk3qTooc/sqlmap-v13-automatic-sql-injection-and.html) - [Stretcher - Tool Designed To Help Identify Open Elasticsearch Servers That Are Exposing Sensitive Information](http://feedproxy.google.com/~r/PentestTools/~3/PdXu9zuRDIg/stretcher-tool-designed-to-help.html) - [Aztarna - A Footprinting Tool For Robots](http://feedproxy.google.com/~r/PentestTools/~3/Q9CYfShlqRA/aztarna-footprinting-tool-for-robots.html) - [Hediye - Hash Generator & Cracker Online Offline](http://feedproxy.google.com/~r/PentestTools/~3/p0oO5qBUFoI/hediye-hash-generator-cracker-online.html) - [Killcast - Manipulate Chromecast Devices In Your Network](http://feedproxy.google.com/~r/PentestTools/~3/rMCHdNb3sTI/killcast-manipulate-chromecast-devices.html) - [bypass-firewalls-by-DNS-history - Firewall Bypass Script Based On DNS History Records](http://feedproxy.google.com/~r/PentestTools/~3/4GvtphGIZmM/bypass-firewalls-by-dns-history.html) - [WiFi-Pumpkin v0.8.7 - Framework for Rogue Wi-Fi Access Point Attack](http://feedproxy.google.com/~r/PentestTools/~3/HogR4BTI3tM/wifi-pumpkin-v087-framework-for-rogue.html) - [H8Mail - Email OSINT And Password Breach Hunting](http://feedproxy.google.com/~r/PentestTools/~3/u6x3-7n6oMI/h8mail-email-osint-and-password-breach.html) - [Kube-Hunter - Hunt For Security Weaknesses In Kubernetes Clusters](http://feedproxy.google.com/~r/PentestTools/~3/Dr1bT8peAAc/kube-hunter-hunt-for-security.html) - [Metasploit 5.0 - The World’s Most Used Penetration Testing Framework](http://feedproxy.google.com/~r/PentestTools/~3/WdwaF60VaxA/metasploit-50-worlds-most-used.html) - [Interlace - Easily Turn Single Threaded Command Line Applications Into Fast, Multi Threaded Ones With CIDR And Glob Support](http://feedproxy.google.com/~r/PentestTools/~3/WogS-qr4dno/interlace-easily-turn-single-threaded.html) - [Twifo-Cli - Get User Information Of A Twitter User](http://feedproxy.google.com/~r/PentestTools/~3/Sbc3gunRkBE/twifo-cli-get-user-information-of.html) - [Sitadel - Web Application Security Scanner](http://feedproxy.google.com/~r/PentestTools/~3/zfPWuXefLsw/sitadel-web-application-security-scanner.html) - [Pe-Sieve - Recognizes And Dumps A Variety Of Potentially Malicious Implants (Replaced/Injected PEs, Shellcodes, Hooks, In-Memory Patches)](http://feedproxy.google.com/~r/PentestTools/~3/MV1mlXFmkpg/pe-sieve-recognizes-and-dumps-variety.html) - [Malboxes - Builds Malware Analysis Windows VMs So That You Don'T Have To](http://feedproxy.google.com/~r/PentestTools/~3/sZXmRx1pB7E/malboxes-builds-malware-analysis.html) - [Snyk - CLI And Build-Time Tool To Find & Fix Known Vulnerabilities In Open-Source Dependencies](http://feedproxy.google.com/~r/PentestTools/~3/elMWRHLI054/snyk-cli-and-build-time-tool-to-find.html) - [Shed - .NET Runtime Inspector](http://feedproxy.google.com/~r/PentestTools/~3/byWGTLrRRMA/shed-net-runtime-inspector.html) - [Stardox - Github Stargazers Information Gathering Tool](http://feedproxy.google.com/~r/PentestTools/~3/kAWqztoZ97E/stardox-github-stargazers-information.html) - [Commix v2.7 - Automated All-in-One OS Command Injection And Exploitation Tool](http://feedproxy.google.com/~r/PentestTools/~3/mjOk7rQhp2Y/commix-v27-automated-all-in-one-os.html) - [AutoSploit v3.0 - Automated Mass Exploiter](http://feedproxy.google.com/~r/PentestTools/~3/nDoUfG2uHQg/autosploit-v30-automated-mass-exploiter.html) - [Faraday v3.5 - Collaborative Penetration Test and Vulnerability Management Platform](http://feedproxy.google.com/~r/PentestTools/~3/Fq1vFkcIIFI/faraday-v35-collaborative-penetration.html) - [Recaf - A Modern Java Bytecode Editor](http://feedproxy.google.com/~r/PentestTools/~3/mAzq3GzpHIg/recaf-modern-java-bytecode-editor.html) - [dnSpy - .NET Debugger And Assembly Editor](http://feedproxy.google.com/~r/PentestTools/~3/JZaPW594CQE/dnspy-net-debugger-and-assembly-editor.html)